CLD-531 Details

Other IDs this deficiency may be known by:

CVE ID CVE-2018-15120 (nvd) (mitre) (debian) (archlinux) (red hat) (suse) (ubuntu)
Other ID(s)

Basic Information:

Affected Package(s) pango
Deficiency Type SECURITY
Date Created 2018-08-25 10:24:26
Date Last Modified 2018-08-26 12:40:19

Version Specific Information:

Cucumber 1.0 i686not affected
Cucumber 1.0 x86_64not affected

Cucumber 1.1 i686 not affected
Cucumber 1.1 x86_64 not affected

Details:

The vulnerable code was added after the release of pango 1.40.3 (the version used in Cucumber Linux 1.0 and 1.1).

Fixed in https://github.com/GNOME/pango/commit/71aaeaf020340412b8d012fe23a556c0420eda5f.

pango-emoji.c does not exist in pango 1.40.3