MidnightBSD

Advisories for pango

CVE-2009-1194 MEDIUM

Integer overflow in the pango_glyph_string_set_size function in pango/glyphstring.c in Pango before 1.24 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long glyph string that triggers a heap-based buffer overflow, as demonstrated by a long document.location value in Firefox.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
pango pango 1.14
pango pango 1.2
pango pango 1.4
pango pango 1.20
pango pango 1.8
pango pango *
pango pango 1.6
pango pango 1.10
pango pango 1.18
pango pango 1.16
pango pango 1.12
CVE-2011-0020 HIGH

Heap-based buffer overflow in the pango_ft2_font_render_box_glyph function in pango/pangoft2-render.c in libpango in Pango 1.28.3 and earlier, when the FreeType2 backend is enabled, allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file, related to the glyph box for an FT_Bitmap object.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
pango pango 1.14
pango pango 1.15
pango pango 1.26
pango pango 1.20
gnome pango 1.28.1
pango pango 1.11
pango pango 1.6
pango pango 1.17
pango pango 0.20
pango pango 1.0
pango pango 0.24
pango pango 0.26
pango pango 1.5
pango pango 1.23
pango pango 0.23
pango pango 1.8
pango pango 1.7
gnome pango *
pango pango 1.21
pango pango 1.10
pango pango 1.18
pango pango 1.4
gnome pango 1.28.0
pango pango 1.24
pango pango 1.16
gnome pango 1.28.2
pango pango 0.21
pango pango 1.2
pango pango 0.22
pango pango 1.22
pango pango 0.25
pango pango 1.27
pango pango 1.9
pango pango 1.19
pango pango 1.3
pango pango 1.13
pango pango 1.25
pango pango 1.12
pango pango 1.1
CVE-2020-12828 HIGH

An issue was discovered in AnchorFree VPN SDK before 1.3.3.218. The VPN SDK service takes certain executable locations over a socket bound to localhost. Binding to the socket and providing a path where a malicious executable file resides leads to executing the malicious executable file with SYSTEM privileges.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-434,

Products Affected

Vendor Product Version
pango virtual_private_network_software_development_kit *
CVE-2020-17365 HIGH

Improper directory permissions in the Hotspot Shield VPN client software for Windows 10.3.0 and earlier may allow an authorized user to potentially enable escalation of privilege via local access. The vulnerability allows a local user to corrupt system files: a local user can create a specially crafted symbolic link to a critical file on the system and overwrite it with privileges of the application.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-59,CWE-732,

Products Affected

Vendor Product Version
pango hotspot_shield *