Vulnerability-Lookup

CVE-2009-1194 (GCVE-0-2009-1194)

Vulnerability from cvelistv5 – Published: 2009-05-11 15:19 – Updated: 2024-08-07 05:04

Summary

Integer overflow in the pango_glyph_string_set_size function in pango/glyphstring.c in Pango before 1.24 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long glyph string that triggers a heap-based buffer overflow, as demonstrated by a long document.location value in Firefox.

Severity ?

No CVSS data available.

CWE

Assigner

redhat

References

URL

Tags

	http://secunia.com/advisories/35038	third-party-advisoryx_refsource_SECUNIA
	http://www.debian.org/security/2009/dsa-1798	vendor-advisoryx_refsource_DEBIAN
	http://github.com/bratsche/pango/commit/4de30e550…	x_refsource_CONFIRM
	http://www.redhat.com/support/errata/RHSA-2009-04…	vendor-advisoryx_refsource_REDHAT
	http://secunia.com/advisories/36145	third-party-advisoryx_refsource_SECUNIA
	https://bugzilla.mozilla.org/show_bug.cgi?id=480134	x_refsource_CONFIRM
	http://www.ocert.org/advisories/ocert-2009-001.html	x_refsource_MISC
	http://secunia.com/advisories/35018	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/35021	third-party-advisoryx_refsource_SECUNIA
	http://www.securityfocus.com/bid/34870	vdb-entryx_refsource_BID
	http://www.securitytracker.com/id?1022196	vdb-entryx_refsource_SECTRACK
	http://osvdb.org/54279	vdb-entryx_refsource_OSVDB
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	http://www.openwall.com/lists/oss-security/2009/05/07/1	mailing-listx_refsource_MLIST
	http://www.vupen.com/english/advisories/2009/1269	vdb-entryx_refsource_VUPEN
	http://www.securityfocus.com/bid/35758	vdb-entryx_refsource_BID
	https://bugzilla.redhat.com/show_bug.cgi?id=496887	x_refsource_CONFIRM
	http://secunia.com/advisories/36005	third-party-advisoryx_refsource_SECUNIA
	https://launchpad.net/bugs/cve/2009-1194	x_refsource_CONFIRM
	http://secunia.com/advisories/35685	third-party-advisoryx_refsource_SECUNIA
	http://www.mozilla.org/security/announce/2009/mfs…	x_refsource_CONFIRM
	http://www.ubuntu.com/usn/USN-773-1	vendor-advisoryx_refsource_UBUNTU
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	https://oval.cisecurity.org/repository/search/def…	vdb-entrysignaturex_refsource_OVAL
	http://secunia.com/advisories/35914	third-party-advisoryx_refsource_SECUNIA
	http://www.vupen.com/english/advisories/2009/1972	vdb-entryx_refsource_VUPEN
	http://secunia.com/advisories/35027	third-party-advisoryx_refsource_SECUNIA
	http://www.securityfocus.com/archive/1/503349/100…	mailing-listx_refsource_BUGTRAQ
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://sunsolve.sun.com/search/document.do?assetk…	vendor-advisoryx_refsource_SUNALERT

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T05:04:49.105Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "35038",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/35038"
          },
          {
            "name": "DSA-1798",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2009/dsa-1798"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://github.com/bratsche/pango/commit/4de30e5500eaeb49f4bf0b7a07f718e149a2ed5e"
          },
          {
            "name": "RHSA-2009:0476",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2009-0476.html"
          },
          {
            "name": "36145",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/36145"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=480134"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.ocert.org/advisories/ocert-2009-001.html"
          },
          {
            "name": "35018",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/35018"
          },
          {
            "name": "35021",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/35021"
          },
          {
            "name": "34870",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/34870"
          },
          {
            "name": "1022196",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1022196"
          },
          {
            "name": "54279",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/54279"
          },
          {
            "name": "SUSE-SA:2009:039",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00005.html"
          },
          {
            "name": "[oss-security] 20090507 [oCERT-2009-001] Pango integer overflow in heap allocation size calculations",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2009/05/07/1"
          },
          {
            "name": "ADV-2009-1269",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2009/1269"
          },
          {
            "name": "35758",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/35758"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496887"
          },
          {
            "name": "36005",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/36005"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://launchpad.net/bugs/cve/2009-1194"
          },
          {
            "name": "35685",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/35685"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-36.html"
          },
          {
            "name": "USN-773-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-773-1"
          },
          {
            "name": "SUSE-SA:2009:042",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2009-08/msg00002.html"
          },
          {
            "name": "SUSE-SR:2009:012",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html"
          },
          {
            "name": "oval:org.mitre.oval:def:10137",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10137"
          },
          {
            "name": "35914",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/35914"
          },
          {
            "name": "ADV-2009-1972",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2009/1972"
          },
          {
            "name": "35027",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/35027"
          },
          {
            "name": "20090507 [oCERT-2009-001] Pango integer overflow in heap allocation size calculations",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/503349/100/0/threaded"
          },
          {
            "name": "pango-pangoglyphstringsetsize-bo(50397)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50397"
          },
          {
            "name": "264308",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUNALERT",
              "x_transferred"
            ],
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2009-05-07T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Integer overflow in the pango_glyph_string_set_size function in pango/glyphstring.c in Pango before 1.24 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long glyph string that triggers a heap-based buffer overflow, as demonstrated by a long document.location value in Firefox."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-10T18:57:01.000Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "35038",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/35038"
        },
        {
          "name": "DSA-1798",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2009/dsa-1798"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://github.com/bratsche/pango/commit/4de30e5500eaeb49f4bf0b7a07f718e149a2ed5e"
        },
        {
          "name": "RHSA-2009:0476",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2009-0476.html"
        },
        {
          "name": "36145",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/36145"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=480134"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.ocert.org/advisories/ocert-2009-001.html"
        },
        {
          "name": "35018",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/35018"
        },
        {
          "name": "35021",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/35021"
        },
        {
          "name": "34870",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/34870"
        },
        {
          "name": "1022196",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1022196"
        },
        {
          "name": "54279",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/54279"
        },
        {
          "name": "SUSE-SA:2009:039",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00005.html"
        },
        {
          "name": "[oss-security] 20090507 [oCERT-2009-001] Pango integer overflow in heap allocation size calculations",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2009/05/07/1"
        },
        {
          "name": "ADV-2009-1269",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2009/1269"
        },
        {
          "name": "35758",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/35758"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496887"
        },
        {
          "name": "36005",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/36005"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://launchpad.net/bugs/cve/2009-1194"
        },
        {
          "name": "35685",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/35685"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-36.html"
        },
        {
          "name": "USN-773-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-773-1"
        },
        {
          "name": "SUSE-SA:2009:042",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2009-08/msg00002.html"
        },
        {
          "name": "SUSE-SR:2009:012",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html"
        },
        {
          "name": "oval:org.mitre.oval:def:10137",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10137"
        },
        {
          "name": "35914",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/35914"
        },
        {
          "name": "ADV-2009-1972",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2009/1972"
        },
        {
          "name": "35027",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/35027"
        },
        {
          "name": "20090507 [oCERT-2009-001] Pango integer overflow in heap allocation size calculations",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/503349/100/0/threaded"
        },
        {
          "name": "pango-pangoglyphstringsetsize-bo(50397)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50397"
        },
        {
          "name": "264308",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUNALERT"
          ],
          "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2009-1194",
    "datePublished": "2009-05-11T15:19:00.000Z",
    "dateReserved": "2009-03-31T00:00:00.000Z",
    "dateUpdated": "2024-08-07T05:04:49.105Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CERTA-2009-AVI-290

Vulnerability from certfr_avis - Published: 2009-07-24 - Updated: 2009-07-24

De mulitples vulnérabilités ont été découvertes dans Mozilla Firefox et permettent à une personne malintentionnée distante d'effectuer des injections de code indirectes et d'exécuter du code arbitraire.

Description

Plusieurs vulnérabilités dans Mozilla Firefox ont été découvertes :

plusieurs erreurs dans la gestion de la mémoire ont été corrigées ;
une erreur dans l'intégration du module Flash permet une exécution de code arbitraire à distance ;
une erreur dans la gestion de certaines polices de caractères permet à une personne distante malveillante d'exécuter du code arbitraire ;
un problème relatif aux éléments SVG (Scalable Vector Graphics) peut conduire à une exécution de code arbitraire à distance ;
une exécution de code arbitraire est possible via la fonction setTimeout() dans certaines conditions ;
des injections de code indirectes peuvent être menées par l'intermédaire de certains objets.

Solution

Se référer aux bulletins de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Mozilla Firefox versions antérieures à la 3.5.1.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

FKIE_CVE-2009-1194

Vulnerability from fkie_nvd - Published: 2009-05-11 15:30 - Updated: 2025-04-09 00:30

Severity ?

Summary

References

URL	Tags
secalert@redhat.com	http://github.com/bratsche/pango/commit/4de30e5500eaeb49f4bf0b7a07f718e149a2ed5e
secalert@redhat.com	http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html
secalert@redhat.com	http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00005.html
secalert@redhat.com	http://lists.opensuse.org/opensuse-security-announce/2009-08/msg00002.html
secalert@redhat.com	http://osvdb.org/54279
secalert@redhat.com	http://secunia.com/advisories/35018
secalert@redhat.com	http://secunia.com/advisories/35021
secalert@redhat.com	http://secunia.com/advisories/35027
secalert@redhat.com	http://secunia.com/advisories/35038
secalert@redhat.com	http://secunia.com/advisories/35685
secalert@redhat.com	http://secunia.com/advisories/35914
secalert@redhat.com	http://secunia.com/advisories/36005
secalert@redhat.com	http://secunia.com/advisories/36145
secalert@redhat.com	http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1
secalert@redhat.com	http://www.debian.org/security/2009/dsa-1798
secalert@redhat.com	http://www.mozilla.org/security/announce/2009/mfsa2009-36.html
secalert@redhat.com	http://www.ocert.org/advisories/ocert-2009-001.html	Patch
secalert@redhat.com	http://www.openwall.com/lists/oss-security/2009/05/07/1
secalert@redhat.com	http://www.redhat.com/support/errata/RHSA-2009-0476.html
secalert@redhat.com	http://www.securityfocus.com/archive/1/503349/100/0/threaded
secalert@redhat.com	http://www.securityfocus.com/bid/34870
secalert@redhat.com	http://www.securityfocus.com/bid/35758
secalert@redhat.com	http://www.securitytracker.com/id?1022196
secalert@redhat.com	http://www.ubuntu.com/usn/USN-773-1
secalert@redhat.com	http://www.vupen.com/english/advisories/2009/1269
secalert@redhat.com	http://www.vupen.com/english/advisories/2009/1972
secalert@redhat.com	https://bugzilla.mozilla.org/show_bug.cgi?id=480134
secalert@redhat.com	https://bugzilla.redhat.com/show_bug.cgi?id=496887	Exploit
secalert@redhat.com	https://exchange.xforce.ibmcloud.com/vulnerabilities/50397
secalert@redhat.com	https://launchpad.net/bugs/cve/2009-1194
secalert@redhat.com	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10137
af854a3a-2127-422b-91ae-364da2661108	http://github.com/bratsche/pango/commit/4de30e5500eaeb49f4bf0b7a07f718e149a2ed5e
af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html
af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00005.html
af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2009-08/msg00002.html
af854a3a-2127-422b-91ae-364da2661108	http://osvdb.org/54279
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/35018
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/35021
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/35027
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/35038
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/35685
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/35914
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/36005
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/36145
af854a3a-2127-422b-91ae-364da2661108	http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2009/dsa-1798
af854a3a-2127-422b-91ae-364da2661108	http://www.mozilla.org/security/announce/2009/mfsa2009-36.html
af854a3a-2127-422b-91ae-364da2661108	http://www.ocert.org/advisories/ocert-2009-001.html	Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2009/05/07/1
af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2009-0476.html
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/503349/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/34870
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/35758
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id?1022196
af854a3a-2127-422b-91ae-364da2661108	http://www.ubuntu.com/usn/USN-773-1
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2009/1269
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2009/1972
af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.mozilla.org/show_bug.cgi?id=480134
af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.redhat.com/show_bug.cgi?id=496887	Exploit
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/50397
af854a3a-2127-422b-91ae-364da2661108	https://launchpad.net/bugs/cve/2009-1194
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10137

Impacted products

Vendor	Product	Version
pango	pango	*
pango	pango	1.2
pango	pango	1.4
pango	pango	1.6
pango	pango	1.8
pango	pango	1.10
pango	pango	1.12
pango	pango	1.14
pango	pango	1.16
pango	pango	1.18
pango	pango	1.20

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:pango:pango:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A8B42FA2-C5FA-4F4B-8542-889AEF8BD855",
              "versionEndIncluding": "1.22",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:pango:pango:1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "0A419445-E8C0-4BC1-A592-9B63FCC8354C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:pango:pango:1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "31EA2429-07F7-4569-9D4D-0397BD2708BC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:pango:pango:1.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "4F64E49C-25CF-4C59-AD1A-AA804AA1D746",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:pango:pango:1.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "F5C554F1-F4B7-47C3-B6E0-8822B205B79B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:pango:pango:1.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "AE0ECCE2-76E8-4A4B-A6CA-EEC45E3D7403",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:pango:pango:1.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6322FCB-DC34-4C4B-A8AE-9983927F6B25",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:pango:pango:1.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "85CB58A0-A452-40EE-818F-A56723BBBF43",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:pango:pango:1.16:*:*:*:*:*:*:*",
              "matchCriteriaId": "30BA57EA-8702-4247-8A75-DB5D2AD18F4C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:pango:pango:1.18:*:*:*:*:*:*:*",
              "matchCriteriaId": "4F73FC80-FB3C-4AEA-BB27-961CD378B1B0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:pango:pango:1.20:*:*:*:*:*:*:*",
              "matchCriteriaId": "B78E87B1-4879-42AE-9B98-9AA176C8ECC7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Integer overflow in the pango_glyph_string_set_size function in pango/glyphstring.c in Pango before 1.24 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long glyph string that triggers a heap-based buffer overflow, as demonstrated by a long document.location value in Firefox."
    },
    {
      "lang": "es",
      "value": "Un desbordamiento de entero en la funci\u00f3n pango_glyph_string_set_size en pango/glyphstring.c en Pango antes de la versi\u00f3n v1.24 permite causar una denegaci\u00f3n de servicio (mediante ca\u00edda de la aplicaci\u00f3n) a atacantes dependientes del contexto y posiblemente tambi\u00e9n ejecutar c\u00f3digo arbitrario a trav\u00e9s de una cadena glifo demasiado larga que desencadena un desbordamiento de b\u00fafer basado en mont\u00edculo, como se ha demostrado por un valor document.location demasiado largo en Firefox."
    }
  ],
  "id": "CVE-2009-1194",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.8,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2009-05-11T15:30:00.377",
  "references": [
    {
      "source": "secalert@redhat.com",
      "url": "http://github.com/bratsche/pango/commit/4de30e5500eaeb49f4bf0b7a07f718e149a2ed5e"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00005.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2009-08/msg00002.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://osvdb.org/54279"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/35018"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/35021"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/35027"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/35038"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/35685"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/35914"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/36005"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/36145"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.debian.org/security/2009/dsa-1798"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-36.html"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Patch"
      ],
      "url": "http://www.ocert.org/advisories/ocert-2009-001.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.openwall.com/lists/oss-security/2009/05/07/1"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.redhat.com/support/errata/RHSA-2009-0476.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.securityfocus.com/archive/1/503349/100/0/threaded"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.securityfocus.com/bid/34870"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.securityfocus.com/bid/35758"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.securitytracker.com/id?1022196"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.ubuntu.com/usn/USN-773-1"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.vupen.com/english/advisories/2009/1269"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.vupen.com/english/advisories/2009/1972"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=480134"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Exploit"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496887"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50397"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://launchpad.net/bugs/cve/2009-1194"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10137"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://github.com/bratsche/pango/commit/4de30e5500eaeb49f4bf0b7a07f718e149a2ed5e"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00005.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2009-08/msg00002.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/54279"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/35018"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/35021"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/35027"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/35038"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/35685"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/35914"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/36005"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/36145"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2009/dsa-1798"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-36.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.ocert.org/advisories/ocert-2009-001.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.openwall.com/lists/oss-security/2009/05/07/1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.redhat.com/support/errata/RHSA-2009-0476.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/503349/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/34870"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/35758"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id?1022196"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.ubuntu.com/usn/USN-773-1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2009/1269"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2009/1972"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=480134"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496887"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50397"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://launchpad.net/bugs/cve/2009-1194"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10137"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-189"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-2635-V9V9-3F2H

Vulnerability from github – Published: 2022-05-02 03:22 – Updated: 2022-05-02 03:22

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2009-1194"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2009-05-11T15:30:00Z",
    "severity": "MODERATE"
  },
  "details": "Integer overflow in the pango_glyph_string_set_size function in pango/glyphstring.c in Pango before 1.24 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long glyph string that triggers a heap-based buffer overflow, as demonstrated by a long document.location value in Firefox.",
  "id": "GHSA-2635-v9v9-3f2h",
  "modified": "2022-05-02T03:22:34Z",
  "published": "2022-05-02T03:22:34Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1194"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2009:0476"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/security/cve/CVE-2009-1194"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=480134"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496887"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50397"
    },
    {
      "type": "WEB",
      "url": "https://launchpad.net/bugs/cve/2009-1194"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10137"
    },
    {
      "type": "WEB",
      "url": "http://github.com/bratsche/pango/commit/4de30e5500eaeb49f4bf0b7a07f718e149a2ed5e"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00005.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2009-08/msg00002.html"
    },
    {
      "type": "WEB",
      "url": "http://osvdb.org/54279"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/35018"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/35021"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/35027"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/35038"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/35685"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/35914"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/36005"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/36145"
    },
    {
      "type": "WEB",
      "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1"
    },
    {
      "type": "WEB",
      "url": "http://www.debian.org/security/2009/dsa-1798"
    },
    {
      "type": "WEB",
      "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-36.html"
    },
    {
      "type": "WEB",
      "url": "http://www.ocert.org/advisories/ocert-2009-001.html"
    },
    {
      "type": "WEB",
      "url": "http://www.openwall.com/lists/oss-security/2009/05/07/1"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/support/errata/RHSA-2009-0476.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/503349/100/0/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/34870"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/35758"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id?1022196"
    },
    {
      "type": "WEB",
      "url": "http://www.ubuntu.com/usn/USN-773-1"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2009/1269"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2009/1972"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

GSD-2009-1194

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2009-1194

Aliases

CVE-2009-1194

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2009-1194",
    "description": "Integer overflow in the pango_glyph_string_set_size function in pango/glyphstring.c in Pango before 1.24 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long glyph string that triggers a heap-based buffer overflow, as demonstrated by a long document.location value in Firefox.",
    "id": "GSD-2009-1194",
    "references": [
      "https://www.suse.com/security/cve/CVE-2009-1194.html",
      "https://www.debian.org/security/2009/dsa-1798",
      "https://access.redhat.com/errata/RHSA-2009:0476",
      "https://linux.oracle.com/cve/CVE-2009-1194.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2009-1194"
      ],
      "details": "Integer overflow in the pango_glyph_string_set_size function in pango/glyphstring.c in Pango before 1.24 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long glyph string that triggers a heap-based buffer overflow, as demonstrated by a long document.location value in Firefox.",
      "id": "GSD-2009-1194",
      "modified": "2023-12-13T01:19:47.475870Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secalert@redhat.com",
        "ID": "CVE-2009-1194",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "=",
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Integer overflow in the pango_glyph_string_set_size function in pango/glyphstring.c in Pango before 1.24 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long glyph string that triggers a heap-based buffer overflow, as demonstrated by a long document.location value in Firefox."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html",
            "refsource": "MISC",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html"
          },
          {
            "name": "http://secunia.com/advisories/35685",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/35685"
          },
          {
            "name": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1",
            "refsource": "MISC",
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1"
          },
          {
            "name": "http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00005.html",
            "refsource": "MISC",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00005.html"
          },
          {
            "name": "http://lists.opensuse.org/opensuse-security-announce/2009-08/msg00002.html",
            "refsource": "MISC",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2009-08/msg00002.html"
          },
          {
            "name": "http://secunia.com/advisories/35914",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/35914"
          },
          {
            "name": "http://secunia.com/advisories/36005",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/36005"
          },
          {
            "name": "http://secunia.com/advisories/36145",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/36145"
          },
          {
            "name": "http://www.securityfocus.com/bid/35758",
            "refsource": "MISC",
            "url": "http://www.securityfocus.com/bid/35758"
          },
          {
            "name": "http://www.vupen.com/english/advisories/2009/1972",
            "refsource": "MISC",
            "url": "http://www.vupen.com/english/advisories/2009/1972"
          },
          {
            "name": "http://github.com/bratsche/pango/commit/4de30e5500eaeb49f4bf0b7a07f718e149a2ed5e",
            "refsource": "MISC",
            "url": "http://github.com/bratsche/pango/commit/4de30e5500eaeb49f4bf0b7a07f718e149a2ed5e"
          },
          {
            "name": "http://osvdb.org/54279",
            "refsource": "MISC",
            "url": "http://osvdb.org/54279"
          },
          {
            "name": "http://secunia.com/advisories/35018",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/35018"
          },
          {
            "name": "http://secunia.com/advisories/35021",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/35021"
          },
          {
            "name": "http://secunia.com/advisories/35027",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/35027"
          },
          {
            "name": "http://secunia.com/advisories/35038",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/35038"
          },
          {
            "name": "http://www.debian.org/security/2009/dsa-1798",
            "refsource": "MISC",
            "url": "http://www.debian.org/security/2009/dsa-1798"
          },
          {
            "name": "http://www.mozilla.org/security/announce/2009/mfsa2009-36.html",
            "refsource": "MISC",
            "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-36.html"
          },
          {
            "name": "http://www.ocert.org/advisories/ocert-2009-001.html",
            "refsource": "MISC",
            "url": "http://www.ocert.org/advisories/ocert-2009-001.html"
          },
          {
            "name": "http://www.openwall.com/lists/oss-security/2009/05/07/1",
            "refsource": "MISC",
            "url": "http://www.openwall.com/lists/oss-security/2009/05/07/1"
          },
          {
            "name": "http://www.redhat.com/support/errata/RHSA-2009-0476.html",
            "refsource": "MISC",
            "url": "http://www.redhat.com/support/errata/RHSA-2009-0476.html"
          },
          {
            "name": "http://www.securityfocus.com/archive/1/503349/100/0/threaded",
            "refsource": "MISC",
            "url": "http://www.securityfocus.com/archive/1/503349/100/0/threaded"
          },
          {
            "name": "http://www.securityfocus.com/bid/34870",
            "refsource": "MISC",
            "url": "http://www.securityfocus.com/bid/34870"
          },
          {
            "name": "http://www.securitytracker.com/id?1022196",
            "refsource": "MISC",
            "url": "http://www.securitytracker.com/id?1022196"
          },
          {
            "name": "http://www.ubuntu.com/usn/USN-773-1",
            "refsource": "MISC",
            "url": "http://www.ubuntu.com/usn/USN-773-1"
          },
          {
            "name": "http://www.vupen.com/english/advisories/2009/1269",
            "refsource": "MISC",
            "url": "http://www.vupen.com/english/advisories/2009/1269"
          },
          {
            "name": "https://bugzilla.mozilla.org/show_bug.cgi?id=480134",
            "refsource": "MISC",
            "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=480134"
          },
          {
            "name": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50397",
            "refsource": "MISC",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50397"
          },
          {
            "name": "https://launchpad.net/bugs/cve/2009-1194",
            "refsource": "MISC",
            "url": "https://launchpad.net/bugs/cve/2009-1194"
          },
          {
            "name": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10137",
            "refsource": "MISC",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10137"
          },
          {
            "name": "https://bugzilla.redhat.com/show_bug.cgi?id=496887",
            "refsource": "MISC",
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496887"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:pango:pango:1.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:pango:pango:1.14:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:pango:pango:1.16:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:pango:pango:1.8:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:pango:pango:1.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:pango:pango:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "1.22",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:pango:pango:1.10:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:pango:pango:1.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:pango:pango:1.18:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:pango:pango:1.12:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:pango:pango:1.20:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2009-1194"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Integer overflow in the pango_glyph_string_set_size function in pango/glyphstring.c in Pango before 1.24 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long glyph string that triggers a heap-based buffer overflow, as demonstrated by a long document.location value in Firefox."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-189"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.ocert.org/advisories/ocert-2009-001.html",
              "refsource": "MISC",
              "tags": [
                "Patch"
              ],
              "url": "http://www.ocert.org/advisories/ocert-2009-001.html"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=496887",
              "refsource": "CONFIRM",
              "tags": [
                "Exploit"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496887"
            },
            {
              "name": "[oss-security] 20090507 [oCERT-2009-001] Pango integer overflow in heap allocation size calculations",
              "refsource": "MLIST",
              "tags": [],
              "url": "http://www.openwall.com/lists/oss-security/2009/05/07/1"
            },
            {
              "name": "USN-773-1",
              "refsource": "UBUNTU",
              "tags": [],
              "url": "http://www.ubuntu.com/usn/USN-773-1"
            },
            {
              "name": "https://launchpad.net/bugs/cve/2009-1194",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "https://launchpad.net/bugs/cve/2009-1194"
            },
            {
              "name": "https://bugzilla.mozilla.org/show_bug.cgi?id=480134",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=480134"
            },
            {
              "name": "http://github.com/bratsche/pango/commit/4de30e5500eaeb49f4bf0b7a07f718e149a2ed5e",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://github.com/bratsche/pango/commit/4de30e5500eaeb49f4bf0b7a07f718e149a2ed5e"
            },
            {
              "name": "DSA-1798",
              "refsource": "DEBIAN",
              "tags": [],
              "url": "http://www.debian.org/security/2009/dsa-1798"
            },
            {
              "name": "RHSA-2009:0476",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://www.redhat.com/support/errata/RHSA-2009-0476.html"
            },
            {
              "name": "35021",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/35021"
            },
            {
              "name": "34870",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/34870"
            },
            {
              "name": "35018",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/35018"
            },
            {
              "name": "35027",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/35027"
            },
            {
              "name": "1022196",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://www.securitytracker.com/id?1022196"
            },
            {
              "name": "54279",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://osvdb.org/54279"
            },
            {
              "name": "ADV-2009-1269",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2009/1269"
            },
            {
              "name": "35038",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/35038"
            },
            {
              "name": "SUSE-SR:2009:012",
              "refsource": "SUSE",
              "tags": [],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html"
            },
            {
              "name": "35685",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/35685"
            },
            {
              "name": "35758",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/35758"
            },
            {
              "name": "http://www.mozilla.org/security/announce/2009/mfsa2009-36.html",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-36.html"
            },
            {
              "name": "ADV-2009-1972",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2009/1972"
            },
            {
              "name": "35914",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/35914"
            },
            {
              "name": "SUSE-SA:2009:042",
              "refsource": "SUSE",
              "tags": [],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2009-08/msg00002.html"
            },
            {
              "name": "36145",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/36145"
            },
            {
              "name": "264308",
              "refsource": "SUNALERT",
              "tags": [],
              "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1"
            },
            {
              "name": "36005",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/36005"
            },
            {
              "name": "SUSE-SA:2009:039",
              "refsource": "SUSE",
              "tags": [],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00005.html"
            },
            {
              "name": "pango-pangoglyphstringsetsize-bo(50397)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/50397"
            },
            {
              "name": "oval:org.mitre.oval:def:10137",
              "refsource": "OVAL",
              "tags": [],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10137"
            },
            {
              "name": "20090507 [oCERT-2009-001] Pango integer overflow in heap allocation size calculations",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/503349/100/0/threaded"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2023-02-13T01:17Z",
      "publishedDate": "2009-05-11T15:30Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2009-1194 (GCVE-0-2009-1194)

CERTA-2009-AVI-290

Description

Solution

FKIE_CVE-2009-1194

GHSA-2635-V9V9-3F2H

GSD-2009-1194

Tags

Sightings

Nomenclature