Debian Security Advisory 1798-1 – Will Drewry discovered that pango, a system for layout and rendering of internationalized text, is prone to an integer overflow via long glyphstrings. This could cause the execution of arbitrary code when displaying crafted data through an application using the pango library.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/77394/dsa-1798-1.txt
Source: https://packetstormsecurity.com/files/77394/Debian-Linux-Security-Advisory-1798-1.html