CVE-2019-1010238: Buffer Overflow
First published: Fri Jul 19 2019(Updated: )
Gnome Pango 1.42 and later is affected by: Buffer Overflow. The impact is: The heap based buffer overflow can be used to get code execution. The component is: function name: pango_log2vis_get_embedding_levels, assignment of nchars and the loop condition. The attack vector is: Bug can be used when application pass invalid utf-8 strings to functions like pango_itemize.
Credit: josh@bress.net
| Affected Software | Affected Version | How to fix |
|---|---|---|
| ubuntu/pango1.0 | <1.42.4-6ubuntu0.1 | 1.42.4-6ubuntu0.1 |
| debian/pango1.0 | 1.46.2-3 1.50.12+ds-1 1.54.0+ds-1 | |
| Pango | >=1.42.0<=1.44 | |
| Oracle SD-WAN Edge | =7.3 | |
| Oracle SD-WAN Edge | =8.0 | |
| Oracle SD-WAN Edge | =8.1 | |
| Oracle SD-WAN Edge | =8.2 | |
| Red Hat Fedora | =29 | |
| Red Hat Fedora | =30 | |
| Debian Linux | =10.0 | |
| Ubuntu | =19.04 | |
| Red Hat OpenShift Container Platform | =3.11 | |
| Red Hat OpenShift Container Platform | =4.1 | |
| Red Hat Enterprise Linux | =8.0 | |
| Red Hat Enterprise Linux Desktop | =7.0 | |
| Red Hat Enterprise Linux Server EUS | =7.4 | |
| Red Hat Enterprise Linux Server EUS | =7.6 | |
| Red Hat Enterprise Linux Server EUS | =8.1 | |
| Red Hat Enterprise Linux Server EUS | =8.2 | |
| Red Hat Enterprise Linux Server EUS | =8.4 | |
| Red Hat Enterprise Linux Server | =7.0 | |
| Red Hat Enterprise Linux Server | =7.6 | |
| Red Hat Enterprise Linux Server | =7.7 | |
| Red Hat Enterprise Linux Server | =8.2 | |
| Red Hat Enterprise Linux Server | =8.4 | |
| Red Hat Enterprise Linux Server | =7.6 | |
| Red Hat Enterprise Linux Server | =7.7 | |
| Red Hat Enterprise Linux Server | =8.2 | |
| Red Hat Enterprise Linux Server | =8.4 | |
| Red Hat Enterprise Linux Workstation | =7.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://gitlab.gnome.org/GNOME/pango/issues/342
- https://security-tracker.debian.org/tracker/CVE-2019-1010238
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1010238
- https://gitlab.gnome.org/GNOME/pango/commit/490f8979a260c16b1df055eab386345da18a2d54
- https://salsa.debian.org/gnome-team/pango/commit/04d20aec487a570bdca67edf9119d5a937bc7901
- https://bugs.debian.org/933860
- https://gitlab.gnome.org/GNOME/pango/commit/490f8979a260c16b1df055eab386345da18a2d54#note_563576
- https://gitlab.gnome.org/GNOME/pango/blob/eb2c647ff693bf3218fd1772f11a008bfbc975e7/pango/pango-bidi-type.c#L173
- https://gitlab.gnome.org/GNOME/pango/blob/eb2c647ff693bf3218fd1772f11a008bfbc975e7/pango/pango-bidi-type.c#L181
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=933860
- https://access.redhat.com/errata/RHBA-2019:2824
- https://access.redhat.com/errata/RHSA-2019:2571
- https://access.redhat.com/errata/RHSA-2019:2582
- https://access.redhat.com/errata/RHSA-2019:2594
- https://access.redhat.com/errata/RHSA-2019:3234
- https://gitlab.gnome.org/GNOME/pango/-/commits/main/pango/pango-bidi-type.c
- https://gitlab.gnome.org/GNOME/pango/-/issues/342
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D6HWAHXJ2ZXINYMANHPFDDCJFWUQ57M4/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VFFF4FY7SCAYT3EKTYPGRN6BVKZTH7Y7/
- https://seclists.org/bugtraq/2019/Aug/14
- https://security.gentoo.org/glsa/201909-03
- https://usn.ubuntu.com/4081-1/
- https://www.debian.org/security/2019/dsa-4496
- https://www.oracle.com/security-alerts/cpuapr2020.html
- https://launchpad.net/bugs/cve/CVE-2019-1010238
- https://packetstormsecurity.com/files/153838/USN-4081-1.txt
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1737786
- https://access.redhat.com/security/cve/cve-2019-1010238
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1738459
- https://bugzilla.redhat.com/show_bug.cgi?id=1737785
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/D6HWAHXJ2ZXINYMANHPFDDCJFWUQ57M4/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VFFF4FY7SCAYT3EKTYPGRN6BVKZTH7Y7/
- https://gitlab.gnome.org/GNOME/pango/blob/master/pango/pango-bidi-type.c
- https://ubuntu.com/security/notices/USN-4081-1
- https://www.cve.org/CVERecord?id=CVE-2019-1010238
- https://nvd.nist.gov/vuln/detail/CVE-2019-1010238
- https://ubuntu.com/security/CVE-2019-1010238
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2019-1010238.
What is the severity of CVE-2019-1010238?
The severity of CVE-2019-1010238 is critical with a severity value of 9.8.
What is the impact of CVE-2019-1010238?
The impact of CVE-2019-1010238 is a heap based buffer overflow that can be used to get code execution.
Which software is affected by CVE-2019-1010238?
Gnome Pango 1.42 and later, Oracle SD-WAN Edge, Fedoraproject Fedora, Debian Debian Linux, Canonical Ubuntu Linux, Redhat Openshift Container Platform, Redhat Enterprise Linux, and Redhat Enterprise Linux Server are affected by CVE-2019-1010238.
How do I fix CVE-2019-1010238?
To fix CVE-2019-1010238, update the affected software to version 1.42.4-6ubuntu0.1 or apply the recommended patches.
- collector/debian-bugs
- alias/CVE-2019-1010238
- agent/type
- collector/launchpad-cve
- source/Launchpad
- collector/redhat-bugzilla
- source/Red Hat
- agent/first-publish-date
- agent/weakness
- agent/severity
- agent/remedy
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- collector/usn-cve
- source/Ubuntu
- agent/software-canonical-lookup
- agent/references
- collector/security-tracker-debian
- source/Debian
- agent/trending
- agent/source
- agent/author
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- package-manager/ubuntu
- package-manager/debian
- vendor/gnome
- canonical/pango
- version/pango/1.42.0
- version/pango/1.44
- vendor/oracle
- canonical/oracle sd-wan edge
- version/oracle sd-wan edge/7.3
- version/oracle sd-wan edge/8.0
- version/oracle sd-wan edge/8.1
- version/oracle sd-wan edge/8.2
- vendor/fedoraproject
- canonical/red hat fedora
- version/red hat fedora/29
- version/red hat fedora/30
- vendor/debian
- canonical/debian linux
- version/debian linux/10.0
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/19.04
- vendor/redhat
- canonical/red hat openshift container platform
- version/red hat openshift container platform/3.11
- version/red hat openshift container platform/4.1
- canonical/red hat enterprise linux
- version/red hat enterprise linux/8.0
- canonical/red hat enterprise linux desktop
- version/red hat enterprise linux desktop/7.0
- canonical/red hat enterprise linux server eus
- version/red hat enterprise linux server eus/7.4
- version/red hat enterprise linux server eus/7.6
- version/red hat enterprise linux server eus/8.1
- version/red hat enterprise linux server eus/8.2
- version/red hat enterprise linux server eus/8.4
- canonical/red hat enterprise linux server
- version/red hat enterprise linux server/7.0
- version/red hat enterprise linux server/7.6
- version/red hat enterprise linux server/7.7
- version/red hat enterprise linux server/8.2
- version/red hat enterprise linux server/8.4
- canonical/red hat enterprise linux workstation
- version/red hat enterprise linux workstation/7.0