Synopsis: Important: pango security update

Advisory ID:       SLSA-2019:2571-1

Issue Date:        2019-08-28

CVE Numbers:       CVE-2019-1010238

--



Security Fix(es):



* pango: pango_log2vis_get_embedding_levels() heap-based buffer overflow

(CVE-2019-1010238)

--



SL7

  x86_64

    pango-1.42.4-4.el7_7.i686.rpm

    pango-1.42.4-4.el7_7.x86_64.rpm

    pango-debuginfo-1.42.4-4.el7_7.i686.rpm

    pango-debuginfo-1.42.4-4.el7_7.x86_64.rpm

    pango-devel-1.42.4-4.el7_7.i686.rpm

    pango-devel-1.42.4-4.el7_7.x86_64.rpm

    pango-tests-1.42.4-4.el7_7.x86_64.rpm



- Scientific Linux Development Team