GLSA-201811-07 : Pango: Denial of Service
Medium Nessus Plugin ID 124213
SynopsisThe remote Gentoo host is missing one or more security-related patches.
DescriptionThe remote host is affected by the vulnerability described in GLSA-201811-07 (Pango: Denial of Service)
Processing certain invalid Emoji sequences in a GTK+ application can trigger a reachable assertion resulting in an application crash.
A remote attacker could provide a specially crafted Emoji sequences, possibly resulting in a Denial of Service condition.
There is no known workaround at this time.
SolutionAll Pango users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=x11-libs/pango-1.42.4'