-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2011-3194 2011-03-12 22:27:42 --------------------------------------------------------------------------------
Name : pango Product : Fedora 14 Version : 1.28.1 Release : 5.fc14 URL : http://www.pango.org Summary : System for layout and rendering of internationalized text Description : Pango is a library for laying out and rendering of text, with an emphasis on internationalization. Pango can be used anywhere that text layout is needed, though most of the work on Pango so far has been done in the context of the GTK+ widget toolkit. Pango forms the core of text and font handling for GTK+. Pango is designed to be modular; the core Pango layout engine can be used with different font backends. The integration of Pango with Cairo provides a complete solution with high quality text handling and graphics rendering. -------------------------------------------------------------------------------- Update Information: It was discovered that pango did not check for memory reallocation failures in hb_buffer_ensure() function. This could trigger a NULL pointer dereference in hb_buffer_add_glyph(), where possibly untrusted input is used as an index used for accessing members of the incorrectly reallocated array, resulting in the use of NULL address as the base array address. This can result in application crash or, possibly, code execution. It was demonstrated that it's possible to trigger this flaw in Firefox via a specially crafted web page. Mozilla bug report (currently not public): https://bugzilla.mozilla.org/show_bug.cgi?id=606997 Fix in the harfbuzz git: http://cgit.freedesktop.org/harfbuzz/commit/?id=a6a79df5fe2e Acknowledgements: Red Hat would like to thank Mozilla Security Team for reporting this issue. -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 11 2011 Matthias Clasen <[email protected]> - 1.28.1-5 - Fix CVS-2011-0064 - Include an upstream heap corruption fix for pangoft2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #678563 - CVE-2011-0064 pango: missing memory reallocation failure checking in hb_buffer_ensure https://bugzilla.redhat.com/show_bug.cgi?id=678563 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update pango' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list [email protected] https://admin.fedoraproject.org/mailman/listinfo/package-announce
