CVE-2011-2895


Severity : High
Published : 2011-08-19
Modified : 2012-12-18
Base Score : 9.3
Details : The LZW decompressor in (1) the BufCompressedFill function in fontfile/decompress.c in X.Org libXfont before 1.4.4 and (2) compress/compress.c in 4.3BSD, as used in zopen.c in OpenBSD before 3.8, FreeBSD, NetBSD 4.0.x and 5.0.x before 5.0.3 and 5.1.x before 5.1.1, FreeType 2.1.9, and other products, does not properly handle code words that are absent from the decompression table when encountered, which allows context-dependent attackers to trigger an infinite loop or a heap-based buffer overflow, and possibly execute arbitrary code, via a crafted compressed stream, a related issue to CVE-2006-1168 and CVE-2011-2896.
Product/Version : Pro 4.x  
CGE 4.x  
Mobilinux 4.x  
Pro 5.0  
CGE 5.x  
Mobilinux 5.x  
Mobilinux 5.0.24  
MVL 5 Atom  
Pro 5.0.24  
MVL 5 OMAP3  
MVL 5 OMAP3530  
 
 
 


CVE Vulnerabilities List CVE-2011
CVE-2011-5000CVE-2011-4944CVE-2011-4940CVE-2011-4914
CVE-2011-4913CVE-2011-4885CVE-2011-4622CVE-2011-4619
CVE-2011-4609CVE-2011-4578CVE-2011-4577CVE-2011-4576
CVE-2011-4566CVE-2011-4330CVE-2011-4324CVE-2011-4317
CVE-2011-4313CVE-2011-4132CVE-2011-4130CVE-2011-4128
CVE-2011-4127CVE-2011-4110CVE-2011-4109CVE-2011-4108
CVE-2011-4102CVE-2011-4101CVE-2011-4081CVE-2011-4077
CVE-2011-4029CVE-2011-4028CVE-2011-3919CVE-2011-3639
CVE-2011-3638CVE-2011-3637CVE-2011-3607CVE-2011-3605
CVE-2011-3604CVE-2011-3597CVE-2011-3593CVE-2011-3483
CVE-2011-3389CVE-2011-3378CVE-2011-3368CVE-2011-3363
CVE-2011-3360CVE-2011-3359CVE-2011-3353CVE-2011-3348
CVE-2011-3266CVE-2011-3210CVE-2011-3209CVE-2011-3192
CVE-2011-3191CVE-2011-3188CVE-2011-3149CVE-2011-3148
CVE-2011-3102CVE-2011-3048CVE-2011-3026CVE-2011-2898
CVE-2011-2896CVE-2011-2895CVE-2011-2834CVE-2011-2821
CVE-2011-2728CVE-2011-2724CVE-2011-2716CVE-2011-2699
CVE-2011-2698CVE-2011-2695CVE-2011-2694CVE-2011-2692
CVE-2011-2691CVE-2011-2690CVE-2011-2597CVE-2011-2534
CVE-2011-2525CVE-2011-2522CVE-2011-2501CVE-2011-2496
CVE-2011-2495CVE-2011-2494CVE-2011-2492CVE-2011-2491
CVE-2011-2484CVE-2011-2483CVE-2011-2213CVE-2011-2212
CVE-2011-2202CVE-2011-2200CVE-2011-2199CVE-2011-2192
CVE-2011-2182CVE-2011-2175CVE-2011-2174CVE-2011-2022
CVE-2011-1959CVE-2011-1958CVE-2011-1957CVE-2011-1945
CVE-2011-1944CVE-2011-1938CVE-2011-1928CVE-2011-1835
CVE-2011-1834CVE-2011-1833CVE-2011-1832CVE-2011-1831
CVE-2011-1776CVE-2011-1770CVE-2011-1767CVE-2011-1760
CVE-2011-1759CVE-2011-1751CVE-2011-1750CVE-2011-1749
CVE-2011-1747CVE-2011-1746CVE-2011-1745CVE-2011-1677
CVE-2011-1676CVE-2011-1675CVE-2011-1659CVE-2011-1658
CVE-2011-1593CVE-2011-1592CVE-2011-1591CVE-2011-1590
CVE-2011-1585CVE-2011-1577CVE-2011-1573CVE-2011-1521
CVE-2011-1495CVE-2011-1494CVE-2011-1493CVE-2011-1477
CVE-2011-1476CVE-2011-1398CVE-2011-1182CVE-2011-1180
CVE-2011-1173CVE-2011-1172CVE-2011-1171CVE-2011-1170
CVE-2011-1163CVE-2011-1162CVE-2011-1155CVE-2011-1098
CVE-2011-1095CVE-2011-1093CVE-2011-1090CVE-2011-1089
CVE-2011-1083CVE-2011-1082CVE-2011-1080CVE-2011-1078
CVE-2011-1071CVE-2011-1044CVE-2011-1023CVE-2011-1017
CVE-2011-1015CVE-2011-1013CVE-2011-1012CVE-2011-1010
CVE-2011-0997CVE-2011-0719CVE-2011-0713CVE-2011-0711
CVE-2011-0695CVE-2011-0539CVE-2011-0538CVE-2011-0536
CVE-2011-0521CVE-2011-0465CVE-2011-0463CVE-2011-0445
CVE-2011-0419CVE-2011-0216CVE-2011-0014