Vulnerabilities

CVE-2011-3193

by Fred · 15/06/2012

Heap-based buffer overflow in the Lookup_MarkMarkPos function in the HarfBuzz module (harfbuzz-gpos.c), as used by Qt before 4.7.4 and Pango, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted font file.

Date published : 2012-06-15

http://www.securityfocus.com/bid/49723

http://cgit.freedesktop.org/harfbuzz.old/commit/?id=81c8ef785b079980ad5b46be4fe7c7bf156dbf65

Similar

Tags: Cybersecurity Alert