VYPR

rpm package

opensuse/pango&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/pango&distro=openSUSE%20Tumbleweed

Vulnerabilities (2)

  • CVE-2011-0064Mar 7, 2011
    affected < 1.40.3-1.1fixed 1.40.3-1.1

    The hb_buffer_ensure function in hb-buffer.c in HarfBuzz, as used in Pango 1.28.3, Firefox, and other products, does not verify that memory reallocations succeed, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or possib

  • CVE-2011-0020Jan 24, 2011
    affected < 1.40.3-1.1fixed 1.40.3-1.1

    Heap-based buffer overflow in the pango_ft2_font_render_box_glyph function in pango/pangoft2-render.c in libpango in Pango 1.28.3 and earlier, when the FreeType2 backend is enabled, allows user-assisted remote attackers to cause a denial of service (application crash) or possibly