Known Vulnerabilities for products from Pango
Listed below are 9 of the newest known vulnerabilities associated with the vendor "Pango".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2020-17365 | Improper directory permissions in the Hotspot Shield VPN client software for Windows 10.3.0 and earlier may allow an authoriz... | 7.8 - HIGH | 2020-09-24 | 2020-10-09 |
| CVE-2020-12828 | An issue was discovered in AnchorFree VPN SDK before 1.3.3.218. The VPN SDK service takes certain executable locations over a... | 9.8 - CRITICAL | 2020-05-21 | 2020-06-02 |
| CVE-2019-1010238 | Gnome Pango 1.42 and later is affected by: Buffer Overflow. The impact is: The heap based buffer overflow can be used to get ... | 9.8 - CRITICAL | 2019-07-19 | 2023-11-07 |
| CVE-2018-15120 | libpango in Pango 1.40.8 through 1.42.3, as used in hexchat and other products, allows remote attackers to cause a denial of ... | 6.5 - MEDIUM | 2018-08-24 | 2021-07-14 |
| CVE-2011-3193 | Heap-based buffer overflow in the Lookup_MarkMarkPos function in the HarfBuzz module (harfbuzz-gpos.c), as used by Qt before ... | 9.3 - HIGH | 2012-06-16 | 2021-07-14 |
| CVE-2011-0064 | The hb_buffer_ensure function in hb-buffer.c in HarfBuzz, as used in Pango 1.28.3, Firefox, and other products, does not veri... | 6.8 - MEDIUM | 2011-03-07 | 2021-07-14 |
| CVE-2011-0020 | Heap-based buffer overflow in the pango_ft2_font_render_box_glyph function in pango/pangoft2-render.c in libpango in Pango 1.... | 7.6 - HIGH | 2011-01-24 | 2023-02-13 |
| CVE-2010-0421 | Array index error in the hb_ot_layout_build_glyph_classes function in pango/opentype/hb-ot-layout.cc in Pango before 1.27.1 a... | 4.3 - MEDIUM | 2010-03-18 | 2021-07-14 |
| CVE-2009-1194 | Integer overflow in the pango_glyph_string_set_size function in pango/glyphstring.c in Pango before 1.24 allows context-depen... | 6.8 - MEDIUM | 2009-05-11 | 2023-02-13 |
Known software with vulnerabilities from Pango
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Pango | Hotspot Shield | - |
| Application | Pango | Pango | 1.23.0 |
| Application | Pango | Virtual Private Network Software Development Kit | 1.3.3.218 |