CVE-2011-0064

NameCVE-2011-0064
DescriptionThe hb_buffer_ensure function in hb-buffer.c in HarfBuzz, as used in Pango 1.28.3, Firefox, and other products, does not verify that memory reallocations succeed, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or possibly execute arbitrary code via crafted OpenType font data that triggers use of an incorrect index.
SourceCVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDSA-2178-1

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
pango1.0 (PTS)bullseye1.46.2-3fixed
bookworm1.50.12+ds-1fixed
trixie1.56.3-1fixed
forky, sid1.56.3-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
pango1.0sourcelenny(not affected)
pango1.0sourcesqueeze1.28.3-1+squeeze2DSA-2178-1
pango1.0sourcewheezy1.28.3-1+squeeze2
pango1.0source(unstable)1.28.3-2~sid1

Notes

[lenny] - pango1.0 <not-affected> (introduced in code cleanup)
Search for package or bug name: Reporting problems