CVE-2010-0421
published 2010-03-18CVE-2010-0421: Array index error in the hb_ot_layout_build_glyph_classes function in pango/opentype/hb-ot-layout.cc in Pango before 1.27.1 allows context-dependent attackers…
PriorityP414medium4.3CVSS 2.0
AVNACMAuNCNINAP
EPSS
2.47%
82.5th percentile
Array index error in the hb_ot_layout_build_glyph_classes function in pango/opentype/hb-ot-layout.cc in Pango before 1.27.1 allows context-dependent attackers to cause a denial of service (application crash) via a crafted font file, related to building a synthetic Glyph Definition (aka GDEF) table by using this font's charmap and the Unicode property database.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | pango1.0 | < pango1.0 1.26.2-1 (bookworm) | pango1.0 1.26.2-1 (bookworm) |
| gnome | pango | <= 1.27 | — |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv4.3MEDIUM
vendor_debian4.3MEDIUM
vendor_redhat4.3MEDIUM
vendor_ubuntu4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Pango vulnerabilities
vendor_ubuntu·2011-03-02·CVSS 4.3
CVE-2010-0421 [MEDIUM] Pango vulnerabilities
Title: Pango vulnerabilities
Marc Schoenefeld discovered that Pango incorrectly handled certain Glyph
Definition (GDEF) tables. If a user were tricked into displaying text with
a specially-crafted font, an attacker could cause Pango to crash, resulting
in a denial of service. This issue only affected Ubuntu 8.04 LTS and 9.10.
(CVE-2010-0421)
Dan Rosenberg discovered that Pango incorrectly handled certain FT_Bitmap
objects. If a user were tricked into displaying text with a specially-
crafted font, an attacker could cause a denial of service or execute
arbitrary code with privileges of the user invoking the program. The
default compiler options for affected releases should reduce the
vulnerability to a denial of service. (CVE-2011-0020)
It was discovered that Pango incorrectly handled ce
Red Hat
libpangoft2 segfaults on forged font files
vendor_redhat·2010-03-15·CVSS 4.3
CVE-2010-0421 [MEDIUM] libpangoft2 segfaults on forged font files
libpangoft2 segfaults on forged font files
Array index error in the hb_ot_layout_build_glyph_classes function in pango/opentype/hb-ot-layout.cc in Pango before 1.27.1 allows context-dependent attackers to cause a denial of service (application crash) via a crafted font file, related to building a synthetic Glyph Definition (aka GDEF) table by using this font's charmap and the Unicode property database.
Debian
CVE-2010-0421: pango1.0 - Array index error in the hb_ot_layout_build_glyph_classes function in pango/open...
vendor_debian·2010·CVSS 4.3
CVE-2010-0421 [MEDIUM] CVE-2010-0421: pango1.0 - Array index error in the hb_ot_layout_build_glyph_classes function in pango/open...
Array index error in the hb_ot_layout_build_glyph_classes function in pango/opentype/hb-ot-layout.cc in Pango before 1.27.1 allows context-dependent attackers to cause a denial of service (application crash) via a crafted font file, related to building a synthetic Glyph Definition (aka GDEF) table by using this font's charmap and the Unicode property database.
Scope: local
bookworm: resolved (fixed in 1.26.2-1)
bullseye: resolved (fixed in 1.26.2-1)
forky: resolved (fixed in 1.26.2-1)
sid: resolved (fixed in 1.26.2-1)
trixie: resolved (fixed in 1.26.2-1)
GHSA
GHSA-77cq-2r3w-6xhj: Array index error in the hb_ot_layout_build_glyph_classes function in pango/opentype/hb-ot-layout
ghsa_unreviewed·2022-05-02
CVE-2010-0421 [MEDIUM] CWE-119 GHSA-77cq-2r3w-6xhj: Array index error in the hb_ot_layout_build_glyph_classes function in pango/opentype/hb-ot-layout
Array index error in the hb_ot_layout_build_glyph_classes function in pango/opentype/hb-ot-layout.cc in Pango before 1.27.1 allows context-dependent attackers to cause a denial of service (application crash) via a crafted font file, related to building a synthetic Glyph Definition (aka GDEF) table by using this font's charmap and the Unicode property database.
OSV
CVE-2010-0421: Array index error in the hb_ot_layout_build_glyph_classes function in pango/opentype/hb-ot-layout
osv·2010-03-18·CVSS 4.3
CVE-2010-0421 [MEDIUM] CVE-2010-0421: Array index error in the hb_ot_layout_build_glyph_classes function in pango/opentype/hb-ot-layout
Array index error in the hb_ot_layout_build_glyph_classes function in pango/opentype/hb-ot-layout.cc in Pango before 1.27.1 allows context-dependent attackers to cause a denial of service (application crash) via a crafted font file, related to building a synthetic Glyph Definition (aka GDEF) table by using this font's charmap and the Unicode property database.
Suricata
GPL EXPLOIT /iisadmpwd/aexp2.htr access
suricata·2010-09-23
CVE-1999-0407 GPL EXPLOIT /iisadmpwd/aexp2.htr access
GPL EXPLOIT /iisadmpwd/aexp2.htr access
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"GPL EXPLOIT /iisadmpwd/aexp2.htr access"; flow:established,to_server; http.uri; content:"/iisadmpwd/aexp2.htr"; reference:bugtraq,2110; reference:bugtraq,4236; reference:cve,1999-0407; reference:cve,2002-0421; reference:nessus,10371; classtype:web-application-activity; sid:2101487; rev:14; metadata:created_at 2010_09_23, cve CVE_1999_0407, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_08;)
Suricata
GPL FTP CWD ~ attempt
suricata·2010-09-23
CVE-2001-0421 GPL FTP CWD ~ attempt
GPL FTP CWD ~ attempt
Rule: alert tcp $EXTERNAL_NET any -> $HOME_NET 21 (msg:"GPL FTP CWD ~ attempt"; flow:established,to_server; content:"CWD"; nocase; pcre:"/^CWD\s+~/smi"; reference:bugtraq,2601; reference:bugtraq,9215; reference:cve,2001-0421; classtype:denial-of-service; sid:2101672; rev:13; metadata:created_at 2010_09_23, cve CVE_2001_0421, signature_severity Unknown, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_08;)
Suricata
GPL FTP CWD ~<CR><NEWLINE> attempt
suricata·2010-09-23
CVE-2001-0421 GPL FTP CWD ~<CR><NEWLINE> attempt
GPL FTP CWD ~ attempt
Rule: alert ftp $EXTERNAL_NET any -> $HOME_NET any (msg:"GPL FTP CWD ~ attempt"; flow:established,to_server; content:"CWD "; content:" ~|0D 0A|"; reference:bugtraq,2601; reference:cve,2001-0421; classtype:denial-of-service; sid:2101728; rev:10; metadata:created_at 2010_09_23, cve CVE_2001_0421, signature_severity Unknown, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_08;)
No public exploits indexed.
http://ftp.gnome.org/pub/GNOME/sources/pango/1.27/pango-1.27.1.tar.bz2http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00002.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.htmlhttp://secunia.com/advisories/39041http://securitytracker.com/id?1023711http://www.debian.org/security/2010/dsa-2019http://www.mandriva.com/security/advisories?name=MDVSA-2010:121http://www.redhat.com/support/errata/RHSA-2010-0140.htmlhttp://www.securityfocus.com/bid/38760http://www.vupen.com/english/advisories/2010/0627http://www.vupen.com/english/advisories/2010/0661http://www.vupen.com/english/advisories/2010/1552https://bugzilla.redhat.com/show_bug.cgi?id=555831https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9417http://ftp.gnome.org/pub/GNOME/sources/pango/1.27/pango-1.27.1.tar.bz2http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00002.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.htmlhttp://secunia.com/advisories/39041http://securitytracker.com/id?1023711http://www.debian.org/security/2010/dsa-2019http://www.mandriva.com/security/advisories?name=MDVSA-2010:121http://www.redhat.com/support/errata/RHSA-2010-0140.htmlhttp://www.securityfocus.com/bid/38760http://www.vupen.com/english/advisories/2010/0627http://www.vupen.com/english/advisories/2010/0661http://www.vupen.com/english/advisories/2010/1552https://bugzilla.redhat.com/show_bug.cgi?id=555831https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9417
2010-03-18
Published