Heap-based buffer overflow in the pango_ft2_font_render_box_glyph function in pango/pangoft2-render.c in libpango in Pango 1.28.3 and earlier, when the FreeType2 backend is enabled, allows user-assisted remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file, related to the glyph box for an FT_Bitmap object.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2011-01-24T17:00:00
Updated: 2017-08-16T14:57:01
Reserved: 2010-12-07T00:00:00
Link: CVE-2011-0020
JSON object: View
NVD Information
Status : Modified
Published: 2011-01-24T18:00:03.783
Modified: 2023-02-13T03:22:38.657
Link: CVE-2011-0020
JSON object: View
Redhat Information
No data.
CWE