CVE-2010-0421Improper Restriction of Operations within the Bounds of a Memory Buffer in Pango

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer8 documents8 sources
Severity
4.3MEDIUMNVD
EPSS
1.7%
top 17.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Gnome Pango
Timeline
PublishedMar 18
Latest updateMay 2

Description

Array index error in the hb_ot_layout_build_glyph_classes function in pango/opentype/hb-ot-layout.cc in Pango before 1.27.1 allows context-dependent attackers to cause a denial of service (application crash) via a crafted font file, related to building a synthetic Glyph Definition (aka GDEF) table by using this font's charmap and the Unicode property database.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDgnome/pango1.27

Patches

Patch: ftp.gnome.orgPatch: ftp.gnome.org

🔴Vulnerability Details

3
GHSA
GHSA-77cq-2r3w-6xhj: Array index error in the hb_ot_layout_build_glyph_classes function in pango/opentype/hb-ot-layout2022-05-02
CVEList
CVE-2010-0421: Array index error in the hb_ot_layout_build_glyph_classes function in pango/opentype/hb-ot-layout2010-03-18
OSV
CVE-2010-0421: Array index error in the hb_ot_layout_build_glyph_classes function in pango/opentype/hb-ot-layout2010-03-18

📋Vendor Advisories

3
Ubuntu
Pango vulnerabilities2011-03-02
Red Hat
libpangoft2 segfaults on forged font files2010-03-15
Debian
CVE-2010-0421: pango1.0 - Array index error in the hb_ot_layout_build_glyph_classes function in pango/open...2010

💬Community

1
Bugzilla
CVE-2010-0421 libpangoft2 segfaults on forged font files2010-01-15
CVE-2010-0421 — Gnome Pango vulnerability | cvebase