CVE-2011-3922

Impact:
Moderate
Public Date:
2012-01-06
CWE:
CWE-121
Bugzilla:
772125: CVE-2011-3922 qt: Stack-based buffer overflow in embedded harfbuzz code

The MITRE CVE dictionary describes this issue as:

Stack-based buffer overflow in Google Chrome before 16.0.912.75 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to glyph handling.

Find out more about CVE-2011-3922 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

This issue does not affect the version of qt as shipped with Red Hat Enterprise Linux 4 and 5. This issue does not affect the version of qt3 as shipped with Red Hat Enterprise Linux 6. This issue does not affect the version of qt4 as shipped with Red Hat Enterprise Linux 5. This issue affects the version of qt as shipped with Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this issue as having moderate security impact. A future update may address this issue.

This issue does not affect the version of pango as shipped with Red Hat Enterprise Linux 4, 5 and 6.

CVSS v2 metrics

Base Score 6.8
Base Metrics AV:N/AC:M/Au:N/C:P/I:P/A:P
Access Vector Network
Access Complexity Medium
Authentication None
Confidentiality Impact Partial
Integrity Impact Partial
Availability Impact Partial

Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 6 (qt) RHSA-2012:0880 2012-06-19

Affected Packages State

Platform Package State
Red Hat Enterprise Linux 6 qt3 Not affected
Red Hat Enterprise Linux 6 pango Not affected
Red Hat Enterprise Linux 5 qt4 Not affected
Red Hat Enterprise Linux 5 pango Not affected
Red Hat Enterprise Linux 5 qt Not affected
Red Hat Enterprise Linux 4 qt Not affected
Red Hat Enterprise Linux 4 pango Not affected

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.