SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

[Forgot Password]

Paid content will be excluded from the download.

Download | Alert*

CVE

CVE-2011-3193

Date: (C)2012-06-15 (M)2023-12-22

Heap-based buffer overflow in the Lookup_MarkMarkPos function in the HarfBuzz module (harfbuzz-gpos.c), as used by Qt before 4.7.4 and Pango, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted font file.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 9.3
Exploit Score: 8.6
Impact Score: 10.0

CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE

Reference:

SUSE-SU-2011:1113

http://www.openwall.com/lists/oss-security/2011/08/22/6

http://www.openwall.com/lists/oss-security/2011/08/24/8

http://www.openwall.com/lists/oss-security/2011/08/25/1

http://cgit.freedesktop.org/harfbuzz.old/commit/?id=81c8ef785b079980ad5b46be4fe7c7bf156dbf65

http://cgit.freedesktop.org/harfbuzz/commit/src/harfbuzz-gpos.c?id=da2c52abcd75d46929b34cad55c4fb2c8892bc08

http://git.gnome.org/browse/pango/commit/pango/opentype/harfbuzz-gpos.c?id=a7a715480db66148b1f487528887508a7991dcd0

https://qt.gitorious.org/qt/qt/commit/9ae6f2f9a57f0c3096d5785913e437953fa6775c

openSUSE-SU-2011:1119

openSUSE-SU-2011:1120

pango-harfbuzz-bo(69991)

cpe:/o:canonical:ubuntu_linux:11.04
cpe:/o:opensuse:opensuse:11.3
cpe:/o:opensuse:opensuse:11.4
cpe:/o:redhat:enterprise_linux_server:6.0
...

oval:org.secpod.oval:def:200509
oval:org.secpod.oval:def:201580
oval:org.secpod.oval:def:201564
oval:org.secpod.oval:def:201550
...

© SecPod Technologies