CVE-2011-3193

NameCVE-2011-3193
DescriptionHeap-based buffer overflow in the Lookup_MarkMarkPos function in the HarfBuzz module (harfbuzz-gpos.c), as used by Qt before 4.7.4 and Pango, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted font file.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
ReferencesDLA-117-1
NVD severityhigh (attack range: remote)
Debian Bugs641738

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
pango1.0 (PTS)wheezy1.30.0-1fixed
jessie1.36.8-3fixed
stretch1.40.5-1fixed
buster, sid1.40.12-1fixed
qt4-x11 (PTS)wheezy4:4.8.2+dfsg-11fixed
jessie4:4.8.6+git64-g5dc8b2b+dfsg-3+deb8u1fixed
buster, sid, stretch4:4.8.7+dfsg-11fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
pango1.0source(unstable)1.28.3-1high
qt4-x11source(unstable)4:4.7.4-1high641738
qt4-x11sourcesqueeze4:4.6.3-4+squeeze2highDLA-117-1

Notes

affected code in pango1.0 removed earlier, but this is the version checked (lenny is affected)

Search for package or bug name: Reporting problems