Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:Red Hat Local Security Checks
Title:RedHat Security Advisory RHSA-2011:1327
The remote host is missing updates announced in
advisory RHSA-2011:1327.

frysk is an execution-analysis technology implemented using native Java and
C++. It provides developers and system administrators with the ability to
examine and analyze multi-host, multi-process, and multithreaded systems
while they are running. frysk is released as a Technology Preview for Red
Hat Enterprise Linux 4.

A buffer overflow flaw was found in HarfBuzz, an OpenType text shaping
engine used in the embedded Pango library. If a frysk application were used
to debug or trace a process that uses HarfBuzz while it loaded a
specially-crafted font file, it could cause the application to crash or,
possibly, execute arbitrary code with the privileges of the user running
the application. (CVE-2011-3193)

Users of frysk are advised to upgrade to this updated package, which
contains a backported patch to correct this issue. All running frysk
applications must be restarted for this update to take effect.

Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

Risk factor : Medium

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2011-3193
BugTraq ID: 49723
RedHat Security Advisories: RHSA-2011:1323
RedHat Security Advisories: RHSA-2011:1324
RedHat Security Advisories: RHSA-2011:1325
RedHat Security Advisories: RHSA-2011:1326
RedHat Security Advisories: RHSA-2011:1327
RedHat Security Advisories: RHSA-2011:1328
SuSE Security Announcement: SUSE-SU-2011:1113 (Google Search)
SuSE Security Announcement: openSUSE-SU-2011:1119 (Google Search)
SuSE Security Announcement: openSUSE-SU-2011:1120 (Google Search)
XForce ISS Database: pango-harfbuzz-bo(69991)
CopyrightCopyright (c) 2011 E-Soft Inc.

This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2021 E-Soft Inc. All rights reserved.