CVE-2011-2895


Severity : High
Published : 2011-08-19
Modified : 2012-12-18
Base Score : 9.3
Details : The LZW decompressor in (1) the BufCompressedFill function in fontfile/decompress.c in X.Org libXfont before 1.4.4 and (2) compress/compress.c in 4.3BSD, as used in zopen.c in OpenBSD before 3.8, FreeBSD, NetBSD 4.0.x and 5.0.x before 5.0.3 and 5.1.x before 5.1.1, FreeType 2.1.9, and other products, does not properly handle code words that are absent from the decompression table when encountered, which allows context-dependent attackers to trigger an infinite loop or a heap-based buffer overflow, and possibly execute arbitrary code, via a crafted compressed stream, a related issue to CVE-2006-1168 and CVE-2011-2896.
Product/Version : Pro 4.x  
CGE 4.x  
Mobilinux 4.x  
Pro 5.0  
CGE 5.x  
Mobilinux 5.x  
Mobilinux 5.0.24  
MVL 5 Atom  
Pro 5.0.24  
MVL 5 OMAP3  
MVL 5 OMAP3530  
 
 
 


CVE Vulnerabilities List CVE-2011
CVE-2011-5000CVE-2011-4944CVE-2011-4940CVE-2011-4914
CVE-2011-4913CVE-2011-4885CVE-2011-4622CVE-2011-4619
CVE-2011-4609CVE-2011-4578CVE-2011-4577CVE-2011-4576
CVE-2011-4566CVE-2011-4330CVE-2011-4324CVE-2011-4317
CVE-2011-4313CVE-2011-4132CVE-2011-4130CVE-2011-4128
CVE-2011-4127CVE-2011-4110CVE-2011-4109CVE-2011-4108
CVE-2011-4102CVE-2011-4101CVE-2011-4089CVE-2011-4081
CVE-2011-4077CVE-2011-4029CVE-2011-4028CVE-2011-3919
CVE-2011-3639CVE-2011-3638CVE-2011-3637CVE-2011-3607
CVE-2011-3605CVE-2011-3604CVE-2011-3602CVE-2011-3597
CVE-2011-3593CVE-2011-3483CVE-2011-3389CVE-2011-3378
CVE-2011-3368CVE-2011-3363CVE-2011-3360CVE-2011-3359
CVE-2011-3353CVE-2011-3348CVE-2011-3266CVE-2011-3210
CVE-2011-3209CVE-2011-3192CVE-2011-3191CVE-2011-3188
CVE-2011-3149CVE-2011-3148CVE-2011-3102CVE-2011-3048
CVE-2011-3026CVE-2011-2898CVE-2011-2896CVE-2011-2895
CVE-2011-2834CVE-2011-2821CVE-2011-2728CVE-2011-2724
CVE-2011-2716CVE-2011-2699CVE-2011-2698CVE-2011-2695
CVE-2011-2694CVE-2011-2692CVE-2011-2691CVE-2011-2690
CVE-2011-2597CVE-2011-2534CVE-2011-2525CVE-2011-2522
CVE-2011-2501CVE-2011-2496CVE-2011-2495CVE-2011-2494
CVE-2011-2492CVE-2011-2491CVE-2011-2484CVE-2011-2483
CVE-2011-2213CVE-2011-2212CVE-2011-2202CVE-2011-2200
CVE-2011-2199CVE-2011-2192CVE-2011-2182CVE-2011-2175
CVE-2011-2174CVE-2011-2022CVE-2011-1959CVE-2011-1958
CVE-2011-1957CVE-2011-1945CVE-2011-1944CVE-2011-1938
CVE-2011-1928CVE-2011-1835CVE-2011-1834CVE-2011-1833
CVE-2011-1832CVE-2011-1831CVE-2011-1776CVE-2011-1770
CVE-2011-1767CVE-2011-1760CVE-2011-1759CVE-2011-1751
CVE-2011-1750CVE-2011-1749CVE-2011-1747CVE-2011-1746
CVE-2011-1745CVE-2011-1677CVE-2011-1676CVE-2011-1675
CVE-2011-1659CVE-2011-1658CVE-2011-1593CVE-2011-1592
CVE-2011-1591CVE-2011-1590CVE-2011-1585CVE-2011-1577
CVE-2011-1573CVE-2011-1521CVE-2011-1495CVE-2011-1494
CVE-2011-1493CVE-2011-1477CVE-2011-1476CVE-2011-1398
CVE-2011-1182CVE-2011-1180CVE-2011-1173CVE-2011-1172
CVE-2011-1171CVE-2011-1170CVE-2011-1163CVE-2011-1162
CVE-2011-1155CVE-2011-1098CVE-2011-1095CVE-2011-1093
CVE-2011-1090CVE-2011-1089CVE-2011-1083CVE-2011-1082
CVE-2011-1080CVE-2011-1078CVE-2011-1071CVE-2011-1044
CVE-2011-1023CVE-2011-1017CVE-2011-1015CVE-2011-1013
CVE-2011-1012CVE-2011-1010CVE-2011-0997CVE-2011-0719
CVE-2011-0713CVE-2011-0711CVE-2011-0695CVE-2011-0539
CVE-2011-0538CVE-2011-0536CVE-2011-0521CVE-2011-0465
CVE-2011-0463CVE-2011-0445CVE-2011-0419CVE-2011-0216
CVE-2011-0014