Test ID:	1.3.6.1.4.1.25623.1.0.121188
Category:	Gentoo Local Security Checks
Title:	Gentoo Security Advisory GLSA 201405-13
Summary:	Gentoo Linux Local Security Checks GLSA 201405-13
Description:	Summary: Gentoo Linux Local Security Checks GLSA 201405-13 Vulnerability Insight: Multiple vulnerabilities have been discovered in Pango. Please review the CVE identifiers referenced below for details. Solution: Update the affected packages to the latest available version. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1194 1022196 http://www.securitytracker.com/id?1022196 20090507 [oCERT-2009-001] Pango integer overflow in heap allocation size calculations http://www.securityfocus.com/archive/1/503349/100/0/threaded 264308 http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1 34870 http://www.securityfocus.com/bid/34870 35018 http://secunia.com/advisories/35018 35021 http://secunia.com/advisories/35021 35027 http://secunia.com/advisories/35027 35038 http://secunia.com/advisories/35038 35685 http://secunia.com/advisories/35685 35758 http://www.securityfocus.com/bid/35758 35914 http://secunia.com/advisories/35914 36005 http://secunia.com/advisories/36005 36145 http://secunia.com/advisories/36145 54279 http://osvdb.org/54279 ADV-2009-1269 http://www.vupen.com/english/advisories/2009/1269 ADV-2009-1972 http://www.vupen.com/english/advisories/2009/1972 DSA-1798 http://www.debian.org/security/2009/dsa-1798 RHSA-2009:0476 http://www.redhat.com/support/errata/RHSA-2009-0476.html SUSE-SA:2009:039 http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00005.html SUSE-SA:2009:042 http://lists.opensuse.org/opensuse-security-announce/2009-08/msg00002.html SUSE-SR:2009:012 http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html USN-773-1 http://www.ubuntu.com/usn/USN-773-1 [oss-security] 20090507 [oCERT-2009-001] Pango integer overflow in heap allocation size calculations http://www.openwall.com/lists/oss-security/2009/05/07/1 http://github.com/bratsche/pango/commit/4de30e5500eaeb49f4bf0b7a07f718e149a2ed5e http://www.mozilla.org/security/announce/2009/mfsa2009-36.html http://www.ocert.org/advisories/ocert-2009-001.html https://bugzilla.mozilla.org/show_bug.cgi?id=480134 https://bugzilla.redhat.com/show_bug.cgi?id=496887 https://launchpad.net/bugs/cve/2009-1194 oval:org.mitre.oval:def:10137 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10137 pango-pangoglyphstringsetsize-bo(50397) https://exchange.xforce.ibmcloud.com/vulnerabilities/50397 Common Vulnerability Exposure (CVE) ID: CVE-2009-2468 http://lists.apple.com/archives/security-announce/2009/Aug/msg00002.html http://lists.apple.com/archives/security-announce/2009/Sep/msg00004.html BugTraq ID: 35758 http://www.securitytracker.com/id?1022717 http://secunia.com/advisories/36701 Common Vulnerability Exposure (CVE) ID: CVE-2011-0020 1024994 http://www.securitytracker.com/id?1024994 42934 http://secunia.com/advisories/42934 43100 http://secunia.com/advisories/43100 45842 http://www.securityfocus.com/bid/45842 70596 http://osvdb.org/70596 ADV-2011-0186 http://www.vupen.com/english/advisories/2011/0186 ADV-2011-0238 http://www.vupen.com/english/advisories/2011/0238 RHSA-2011:0180 http://www.redhat.com/support/errata/RHSA-2011-0180.html SUSE-SR:2011:005 http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html [oss-security] 20110118 CVE request: heap corruption in libpango http://openwall.com/lists/oss-security/2011/01/18/6 [oss-security] 20110120 Re: CVE request: heap corruption in libpango http://openwall.com/lists/oss-security/2011/01/20/2 https://bugs.launchpad.net/ubuntu/+source/pango1.0/+bug/696616 https://bugzilla.gnome.org/show_bug.cgi?id=639882 https://bugzilla.redhat.com/show_bug.cgi?id=671122 pango-pango-bo(64832) https://exchange.xforce.ibmcloud.com/vulnerabilities/64832 Common Vulnerability Exposure (CVE) ID: CVE-2011-0064 BugTraq ID: 46632 http://www.securityfocus.com/bid/46632 Debian Security Information: DSA-2178 (Google Search) http://www.debian.org/security/2011/dsa-2178 http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056065.html http://www.mandriva.com/security/advisories?name=MDVSA-2011:040 http://www.redhat.com/support/errata/RHSA-2011-0309.html http://securitytracker.com/id?1025145 http://secunia.com/advisories/43559 http://secunia.com/advisories/43572 http://secunia.com/advisories/43578 http://secunia.com/advisories/43800 SuSE Security Announcement: SUSE-SR:2011:005 (Google Search) http://www.ubuntu.com/usn/USN-1082-1 http://www.vupen.com/english/advisories/2011/0543 http://www.vupen.com/english/advisories/2011/0555 http://www.vupen.com/english/advisories/2011/0558 http://www.vupen.com/english/advisories/2011/0584 http://www.vupen.com/english/advisories/2011/0683 XForce ISS Database: pango-hbbufferensure-bo(65770) https://exchange.xforce.ibmcloud.com/vulnerabilities/65770
Copyright	Copyright (C) 2015 Eero Volotinen

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.