CVE-2011-3193

NameCVE-2011-3193
DescriptionHeap-based buffer overflow in the Lookup_MarkMarkPos function in the HarfBuzz module (harfbuzz-gpos.c), as used by Qt before 4.7.4 and Pango, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted font file.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
ReferencesDLA-117-1
NVD severityhigh (attack range: remote)
Debian Bugs641738

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
pango1.0 (PTS)jessie1.36.8-3fixed
stretch1.40.5-1fixed
buster1.42.4-1fixed
sid1.42.4-3fixed
qt4-x11 (PTS)jessie4:4.8.6+git64-g5dc8b2b+dfsg-3+deb8u1fixed
stretch4:4.8.7+dfsg-11fixed
buster, sid4:4.8.7+dfsg-17fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
pango1.0source(unstable)1.28.3-1high
qt4-x11source(unstable)4:4.7.4-1high641738
qt4-x11sourcesqueeze4:4.6.3-4+squeeze2highDLA-117-1

Notes

affected code in pango1.0 removed earlier, but this is the version checked (lenny is affected)
Search for package or bug name: Reporting problems