CentOS Local Security Checks : CentOS Update for pango CESA-2019:2571 centos7

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.883106

Categoría: CentOS Local Security Checks

Título: CentOS Update for pango CESA-2019:2571 centos7

Resumen: The remote host is missing an update for the 'pango'; package(s) announced via the CESA-2019:2571 advisory.

Descripción: Summary:
The remote host is missing an update for the 'pango'
package(s) announced via the CESA-2019:2571 advisory.

Vulnerability Insight:
Pango is a library for laying out and rendering of text, with an emphasis
on internationalization. Pango forms the core of text and font handling for
the GTK+ widget toolkit.

Security Fix(es):

* pango: pango_log2vis_get_embedding_levels() heap-based buffer overflow
(CVE-2019-1010238)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

Affected Software/OS:
'pango' package(s) on CentOS 7.

Solution:
Please install the updated package(s).

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2019-1010238
Bugtraq: 20190812 [SECURITY] [DSA 4496-1] pango1.0 security update (Google Search)
https://seclists.org/bugtraq/2019/Aug/14
Debian Security Information: DSA-4496 (Google Search)
https://www.debian.org/security/2019/dsa-4496
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VFFF4FY7SCAYT3EKTYPGRN6BVKZTH7Y7/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D6HWAHXJ2ZXINYMANHPFDDCJFWUQ57M4/
https://security.gentoo.org/glsa/201909-03
https://gitlab.gnome.org/GNOME/pango/-/commits/main/pango/pango-bidi-type.c
https://gitlab.gnome.org/GNOME/pango/-/issues/342
https://www.oracle.com/security-alerts/cpuapr2020.html
RedHat Security Advisories: RHBA-2019:2824
https://access.redhat.com/errata/RHBA-2019:2824
RedHat Security Advisories: RHSA-2019:2571
https://access.redhat.com/errata/RHSA-2019:2571
RedHat Security Advisories: RHSA-2019:2582
https://access.redhat.com/errata/RHSA-2019:2582
RedHat Security Advisories: RHSA-2019:2594
https://access.redhat.com/errata/RHSA-2019:2594
RedHat Security Advisories: RHSA-2019:3234
https://access.redhat.com/errata/RHSA-2019:3234
https://usn.ubuntu.com/4081-1/

Copyright Copyright (C) 2019 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.883106
Categoría:	CentOS Local Security Checks
Título:	CentOS Update for pango CESA-2019:2571 centos7
Resumen:	The remote host is missing an update for the 'pango'; package(s) announced via the CESA-2019:2571 advisory.
Descripción:	Summary: The remote host is missing an update for the 'pango' package(s) announced via the CESA-2019:2571 advisory. Vulnerability Insight: Pango is a library for laying out and rendering of text, with an emphasis on internationalization. Pango forms the core of text and font handling for the GTK+ widget toolkit. Security Fix(es): * pango: pango_log2vis_get_embedding_levels() heap-based buffer overflow (CVE-2019-1010238) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Affected Software/OS: 'pango' package(s) on CentOS 7. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2019-1010238 Bugtraq: 20190812 [SECURITY] [DSA 4496-1] pango1.0 security update (Google Search) https://seclists.org/bugtraq/2019/Aug/14 Debian Security Information: DSA-4496 (Google Search) https://www.debian.org/security/2019/dsa-4496 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VFFF4FY7SCAYT3EKTYPGRN6BVKZTH7Y7/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D6HWAHXJ2ZXINYMANHPFDDCJFWUQ57M4/ https://security.gentoo.org/glsa/201909-03 https://gitlab.gnome.org/GNOME/pango/-/commits/main/pango/pango-bidi-type.c https://gitlab.gnome.org/GNOME/pango/-/issues/342 https://www.oracle.com/security-alerts/cpuapr2020.html RedHat Security Advisories: RHBA-2019:2824 https://access.redhat.com/errata/RHBA-2019:2824 RedHat Security Advisories: RHSA-2019:2571 https://access.redhat.com/errata/RHSA-2019:2571 RedHat Security Advisories: RHSA-2019:2582 https://access.redhat.com/errata/RHSA-2019:2582 RedHat Security Advisories: RHSA-2019:2594 https://access.redhat.com/errata/RHSA-2019:2594 RedHat Security Advisories: RHSA-2019:3234 https://access.redhat.com/errata/RHSA-2019:3234 https://usn.ubuntu.com/4081-1/
Copyright	Copyright (C) 2019 Greenbone AG