安全研究
安全漏洞
Pango pango_glyph_string_set_size()函数整数溢出漏洞
发布日期:2009-05-07
更新日期:2009-05-08
受影响系统:
Pango Pango < 1.24不受影响系统:
Pango Pango 1.24描述:
BUGTRAQ ID: 34870
CVE(CAN) ID: CVE-2009-1194
Pango是一个开放源码的自由函数库,用于高质量地渲染国际化的文字。
Pango的pango_glyph_string_set_size函数在进行乘法运算时存在整数溢出漏洞:
string->glyphs = g_realloc (string->glyphs, string->space *
sizeof (PangoGlyphInfo));
如果用户受骗使用链接到该库的应用程序打开了包含有超长字型信息的恶意字体文件的话,就可能触发这个溢出,导致执行任意代码。
<*来源:Will Drewry (wad@google.com)
链接:http://marc.info/?l=bugtraq&m=124172043024163&w=2
http://secunia.com/advisories/35021/
http://www.debian.org/security/2009/dsa-1798
https://www.redhat.com/support/errata/RHSA-2008-0476.html
*>
建议:
厂商补丁:
Debian
------
Debian已经为此发布了一个安全公告(DSA-1798-1)以及相应补丁:
DSA-1798-1:New pango1.0 packages fix arbitrary code execution
链接:http://www.debian.org/security/2009/dsa-1798
补丁下载:
Source archives:
http://security.debian.org/pool/updates/main/p/pango1.0/pango1.0_1.14.8.orig.tar.gz
Size/MD5 checksum: 1903985 18c64e6cd7b91d04c40ef621a3d8fa4a
http://security.debian.org/pool/updates/main/p/pango1.0/pango1.0_1.14.8-5+etch1.diff.gz
Size/MD5 checksum: 26479 ed32cd0fab563f3d0446fd9ec43b2f7c
http://security.debian.org/pool/updates/main/p/pango1.0/pango1.0_1.14.8-5+etch1.dsc
Size/MD5 checksum: 1755 dc9d2d9010dc5dcc17fdf589db1a2e5e
Architecture independent packages:
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-doc_1.14.8-5+etch1_all.deb
Size/MD5 checksum: 253836 dbc3410b16ec27ddfed6dc8c1fb23daf
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-common_1.14.8-5+etch1_all.deb
Size/MD5 checksum: 6668 f10d91ab42b3eba15ef083bfb7540de5
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.14.8-5+etch1_alpha.udeb
Size/MD5 checksum: 248652 708bd8f608c2447f8e0a82febf1e587a
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.14.8-5+etch1_alpha.deb
Size/MD5 checksum: 362654 22a3cea2b5598180f52caf057dba3ecd
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.14.8-5+etch1_alpha.deb
Size/MD5 checksum: 496650 9b68bc2d3e14db69c128b0845eaa4a85
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.14.8-5+etch1_alpha.deb
Size/MD5 checksum: 695224 d72beaf860b54f76008af828e71eacd0
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.14.8-5+etch1_amd64.deb
Size/MD5 checksum: 704936 0535ac16c732c783b55bbd0a877d8a78
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.14.8-5+etch1_amd64.deb
Size/MD5 checksum: 335362 3181dcff1339b37ebc22d4a65751dc99
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.14.8-5+etch1_amd64.deb
Size/MD5 checksum: 384990 88a73bdbf1ade11b93416eeaa47fed05
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.14.8-5+etch1_amd64.udeb
Size/MD5 checksum: 224702 eed5fa5149bae7cb5425af34f1ec3edc
arm architecture (ARM)
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.14.8-5+etch1_arm.deb
Size/MD5 checksum: 662692 853a22e95710cdbc2d6466d8a57d4869
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.14.8-5+etch1_arm.deb
Size/MD5 checksum: 349496 dffb98f863c7d1965ceee910db8e02c7
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.14.8-5+etch1_arm.udeb
Size/MD5 checksum: 202936 b4574bd7f773fd4de522caf2cf9947bd
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.14.8-5+etch1_arm.deb
Size/MD5 checksum: 307638 31237ca7f49f47c18b8f648cd2886856
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.14.8-5+etch1_hppa.deb
Size/MD5 checksum: 357600 f73a658e1f9e70a50ee3a84d5c5b970b
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.14.8-5+etch1_hppa.deb
Size/MD5 checksum: 673998 e3a17f9b99670c80d11beac2c4593aa8
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.14.8-5+etch1_hppa.deb
Size/MD5 checksum: 417448 c666abe6774a4207c8d0f4f6b6210c8e
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.14.8-5+etch1_hppa.udeb
Size/MD5 checksum: 242820 9e3c948ace44963cbc99ef43c59d8987
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.14.8-5+etch1_i386.deb
Size/MD5 checksum: 648360 44005bd92a8dbf3b89c8903e05690f23
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.14.8-5+etch1_i386.deb
Size/MD5 checksum: 344914 d41eb5702362976a8e080d5e80270343
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.14.8-5+etch1_i386.deb
Size/MD5 checksum: 312862 598616609baee45e6a72d8ca449737da
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.14.8-5+etch1_i386.udeb
Size/MD5 checksum: 209232 ed7fcd356d9a6106a6fccd11dd2e88cc
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.14.8-5+etch1_ia64.deb
Size/MD5 checksum: 449774 9afae76eabee3f1f573fac369eac0654
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.14.8-5+etch1_ia64.udeb
Size/MD5 checksum: 321620 0065a16f4d0eb3654f195f5d535865b9
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.14.8-5+etch1_ia64.deb
Size/MD5 checksum: 678836 cf5e135e208e93263c7df7193c93eeb5
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.14.8-5+etch1_ia64.deb
Size/MD5 checksum: 536936 5267c4a96811174acd4771d85a7fb116
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.14.8-5+etch1_mips.deb
Size/MD5 checksum: 318318 98e84a89c8a49071ed6479ffeb6214c7
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.14.8-5+etch1_mips.udeb
Size/MD5 checksum: 214408 7422157343a02049b550cb4145c2cd00
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.14.8-5+etch1_mips.deb
Size/MD5 checksum: 420128 bd9e0436d3870a50126075b710cdbba1
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.14.8-5+etch1_mips.deb
Size/MD5 checksum: 711374 58a7ffd0326362a1437ead0ee154139a
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.14.8-5+etch1_mipsel.udeb
Size/MD5 checksum: 213738 437814c1f15aa29d6fe2ec966ae2aff2
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.14.8-5+etch1_mipsel.deb
Size/MD5 checksum: 317716 60fc462800646d713dcaa8bc73b280bd
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.14.8-5+etch1_mipsel.deb
Size/MD5 checksum: 696792 74e617a9ea1709d954f8fdda87eb71c0
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.14.8-5+etch1_mipsel.deb
Size/MD5 checksum: 418734 7eb2d6028f6d0be7c3fac22b5fd76ec0
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.14.8-5+etch1_powerpc.udeb
Size/MD5 checksum: 211976 95b74b4286659bfe620f6114a6a2af32
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.14.8-5+etch1_powerpc.deb
Size/MD5 checksum: 320364 0d64d5625b1afdfc39dff105015fc660
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.14.8-5+etch1_powerpc.deb
Size/MD5 checksum: 389174 275ad345fc0887eed75a88ec501945ef
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.14.8-5+etch1_powerpc.deb
Size/MD5 checksum: 722428 cc25bd3a8ea812c48a96a02bbb6f7a12
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.14.8-5+etch1_s390.udeb
Size/MD5 checksum: 233354 226d31c71f2bc649de586306f4b4eb98
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.14.8-5+etch1_s390.deb
Size/MD5 checksum: 344094 7ccb96c0123737bc8e949f14b3e6d354
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.14.8-5+etch1_s390.deb
Size/MD5 checksum: 377674 8d7981c3d136952adac213a1af120bfc
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.14.8-5+etch1_s390.deb
Size/MD5 checksum: 675636 81dd74af7faf467348982fb9af23f44a
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.14.8-5+etch1_sparc.deb
Size/MD5 checksum: 358592 ac3ecb9a58f721cc2491bdcf8ad5870b
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.14.8-5+etch1_sparc.deb
Size/MD5 checksum: 638452 8d4d33b640e64a1fd2e015ba4c51b4df
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.14.8-5+etch1_sparc.udeb
Size/MD5 checksum: 203774 66d6c9576973369b38fb7eea068a52fb
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.14.8-5+etch1_sparc.deb
Size/MD5 checksum: 310068 2a9e670cf8cb32e1d033f41c05c00f6e
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Debian (stable)
- ---------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/p/pango1.0/pango1.0_1.20.5.orig.tar.gz
Size/MD5 checksum: 2071747 e0fac4c2c99d903fdec3f8db60107f36
http://security.debian.org/pool/updates/main/p/pango1.0/pango1.0_1.20.5-3+lenny1.diff.gz
Size/MD5 checksum: 30003 56d02137714566e424047fb31657988b
http://security.debian.org/pool/updates/main/p/pango1.0/pango1.0_1.20.5-3+lenny1.dsc
Size/MD5 checksum: 1646 9be59b5b10f5726ad17c5e7bc18c8967
Architecture independent packages:
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-common_1.20.5-3+lenny1_all.deb
Size/MD5 checksum: 63850 54876cdcc098531aaf9ad7f97aa2de91
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-doc_1.20.5-3+lenny1_all.deb
Size/MD5 checksum: 284480 6cd0b32cfd60851b3893229e5fe6a373
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.20.5-3+lenny1_alpha.deb
Size/MD5 checksum: 331030 a4d58569c599bde2e30fc2a7482428ec
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.20.5-3+lenny1_alpha.deb
Size/MD5 checksum: 744150 736e7468067ba3d1e256be02698c5403
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.20.5-3+lenny1_alpha.deb
Size/MD5 checksum: 480620 ef0ff84eab89c27c2ab93747a4a406b9
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.20.5-3+lenny1_alpha.udeb
Size/MD5 checksum: 249196 af6a3a08ec7cb5eb71e33d084b943da7
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.20.5-3+lenny1_amd64.deb
Size/MD5 checksum: 768228 3914e2d54e064cab630410d4a1fbf119
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.20.5-3+lenny1_amd64.deb
Size/MD5 checksum: 312762 fe888a58e2e9782977f7a1ea940f436c
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.20.5-3+lenny1_amd64.udeb
Size/MD5 checksum: 231004 095fffcbe38078a3f60fe265a4bdcc77
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.20.5-3+lenny1_amd64.deb
Size/MD5 checksum: 391038 be74eea47d97df6dec315ccc10bfa1a4
arm architecture (ARM)
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.20.5-3+lenny1_arm.udeb
Size/MD5 checksum: 201452 f20bcc47be666a8ab409c4a597107362
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.20.5-3+lenny1_arm.deb
Size/MD5 checksum: 274918 cbeff689d12f39eb7a098900bb7affef
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.20.5-3+lenny1_arm.deb
Size/MD5 checksum: 728140 ff9d48449034d9fa9a7b069fe426eb60
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.20.5-3+lenny1_arm.deb
Size/MD5 checksum: 354160 c7a8fccc422853bf91d5362fe1c0d376
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.20.5-3+lenny1_armel.udeb
Size/MD5 checksum: 206886 43b24dcd892b74f54c51c3c8dda751e7
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.20.5-3+lenny1_armel.deb
Size/MD5 checksum: 733386 16433105817fd2c12444417365e62568
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.20.5-3+lenny1_armel.deb
Size/MD5 checksum: 285388 ddb03ffea587e4a562e2aee7458933c8
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.20.5-3+lenny1_armel.deb
Size/MD5 checksum: 358080 ffd351bbc11bf504e073045ba09cb8fe
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.20.5-3+lenny1_hppa.deb
Size/MD5 checksum: 415344 ff958c446705b7127ca91db003f4283c
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.20.5-3+lenny1_hppa.deb
Size/MD5 checksum: 741448 4c75ffba9f6d5feb57b62ad30f6ba716
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.20.5-3+lenny1_hppa.udeb
Size/MD5 checksum: 237188 4331e189d89b308453ae6de33cbb20e1
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.20.5-3+lenny1_hppa.deb
Size/MD5 checksum: 322854 a92a3ba766ff8f1a4eb080ed80e35b42
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.20.5-3+lenny1_i386.deb
Size/MD5 checksum: 349380 71a9538aadd9beae278e89c4d21d0129
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.20.5-3+lenny1_i386.deb
Size/MD5 checksum: 715402 2bd15da124e608fa0f0e72f6591cb673
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.20.5-3+lenny1_i386.udeb
Size/MD5 checksum: 213754 ec7309bca467dd390ffc09097224d247
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.20.5-3+lenny1_i386.deb
Size/MD5 checksum: 288284 1f4a82e4837cd653a6e38f6f5f15a0ec
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.20.5-3+lenny1_ia64.deb
Size/MD5 checksum: 539472 72ba1dc99225f911115edacbd42072b4
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.20.5-3+lenny1_ia64.deb
Size/MD5 checksum: 423598 c3e2ad86d402cd19954e2c1876c70f5a
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.20.5-3+lenny1_ia64.deb
Size/MD5 checksum: 723274 dfbde260b9d60147d412e1089ef4853f
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.20.5-3+lenny1_ia64.udeb
Size/MD5 checksum: 323228 f973337405e5c0f0adc1330e88827c63
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.20.5-3+lenny1_mips.deb
Size/MD5 checksum: 290472 40239c39424c7706f622e1504ff17fc3
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.20.5-3+lenny1_mips.deb
Size/MD5 checksum: 768846 a2fc1ca46e2830568a7917e3528006e7
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.20.5-3+lenny1_mips.udeb
Size/MD5 checksum: 216132 49d43c28e824754685def75b2e6b3467
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.20.5-3+lenny1_mips.deb
Size/MD5 checksum: 415524 35c644367bf1507be9d5e9294e3da797
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.20.5-3+lenny1_mipsel.deb
Size/MD5 checksum: 412848 88bdf71acb4ab37c5e08d50a7508a2c3
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.20.5-3+lenny1_mipsel.deb
Size/MD5 checksum: 756686 b3b81326d4d3a58f2531ed94a1764ed5
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.20.5-3+lenny1_mipsel.udeb
Size/MD5 checksum: 214958 7769a23b0b01c1a2e6c9d5c1ddfcbf2d
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.20.5-3+lenny1_mipsel.deb
Size/MD5 checksum: 289920 f5fe5109626ea15d4ac1bce9c0b71770
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.20.5-3+lenny1_powerpc.deb
Size/MD5 checksum: 773220 457169c33176b45884ee9067371d637f
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.20.5-3+lenny1_powerpc.deb
Size/MD5 checksum: 398320 53b0dc4efef029e45c56329e00ade91d
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.20.5-3+lenny1_powerpc.deb
Size/MD5 checksum: 306970 578c803e2a1171ddc8aa97ceffa15960
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.20.5-3+lenny1_powerpc.udeb
Size/MD5 checksum: 226166 5c3e4d633920eb234350d11427c11f58
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.20.5-3+lenny1_s390.deb
Size/MD5 checksum: 318020 3e5e9ff014e947fe98340a930ad8d48e
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.20.5-3+lenny1_s390.deb
Size/MD5 checksum: 384816 88e6d9ae4dd82993392728147957d953
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.20.5-3+lenny1_s390.deb
Size/MD5 checksum: 761086 2120bb434453f0cb5e27e729c2471c89
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.20.5-3+lenny1_s390.udeb
Size/MD5 checksum: 238092 5c965942930aa36edbe3c4d84783dec9
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-udeb_1.20.5-3+lenny1_sparc.udeb
Size/MD5 checksum: 205580 01217a572cdb3eaa3d2b6fba10b5c279
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-dev_1.20.5-3+lenny1_sparc.deb
Size/MD5 checksum: 364812 606fc9bfd6a8f2da87060019d7078a7a
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0-dbg_1.20.5-3+lenny1_sparc.deb
Size/MD5 checksum: 677108 a6e8d91832c3cfc07a5f4a2d4ed5173e
http://security.debian.org/pool/updates/main/p/pango1.0/libpango1.0-0_1.20.5-3+lenny1_sparc.deb
Size/MD5 checksum: 281650 8925fa5807479331385e32c53c7fc87f
补丁安装方法:
1. 手工安装补丁包:
首先,使用下面的命令来下载补丁软件:
# wget url (url是补丁下载链接地址)
然后,使用下面的命令来安装补丁:
# dpkg -i file.deb (file是相应的补丁名)
2. 使用apt-get自动安装补丁包:
首先,使用下面的命令更新内部数据库:
# apt-get update
然后,使用下面的命令安装更新软件包:
# apt-get upgrade
RedHat
------
RedHat已经为此发布了一个安全公告(RHSA-2008:0476-01)以及相应补丁:
RHSA-2008:0476-01:Important: pango security update
链接:https://www.redhat.com/support/errata/RHSA-2008-0476.html
Pango
-----
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
http://www.pango.org/
浏览次数:3368
严重程度:0(网友投票)
绿盟科技给您安全的保障