Vulnerability Description
The hb_buffer_ensure function in hb-buffer.c in HarfBuzz, as used in Pango 1.28.3, Firefox, and other products, does not verify that memory reallocations succeed, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or possibly execute arbitrary code via crafted OpenType font data that triggers use of an incorrect index.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Gnome | Pango | 1.28.3 |
| Mozilla | Firefox | All versions |
References
- http://cgit.freedesktop.org/harfbuzz/commit/?id=a6a79df5fe2ed2cd307e7a991346faeePatch
- http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056065.html
- http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
- http://secunia.com/advisories/43559Vendor Advisory
- http://secunia.com/advisories/43572Vendor Advisory
- http://secunia.com/advisories/43578Vendor Advisory
- http://secunia.com/advisories/43800
- http://securitytracker.com/id?1025145
- http://www.debian.org/security/2011/dsa-2178
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:040
- http://www.redhat.com/support/errata/RHSA-2011-0309.html
- http://www.securityfocus.com/bid/46632
- http://www.ubuntu.com/usn/USN-1082-1
- http://www.vupen.com/english/advisories/2011/0543Vendor Advisory
- http://www.vupen.com/english/advisories/2011/0555Vendor Advisory
FAQ
What is CVE-2011-0064?
CVE-2011-0064 is a vulnerability with a CVSS score of 6.8 (MEDIUM). The hb_buffer_ensure function in hb-buffer.c in HarfBuzz, as used in Pango 1.28.3, Firefox, and other products, does not verify that memory reallocations succeed, which allows remote attackers to caus...
How severe is CVE-2011-0064?
CVE-2011-0064 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-0064?
Check the references section above for vendor advisories and patch information. Affected products include: Gnome Pango, Mozilla Firefox.