Описание
Integer overflow in the write_png function in cairo 1.14.6 allows remote attackers to cause a denial of service (invalid pointer dereference) via a large svg file.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| cairo | fixed | 1.14.6-1.1 | package | |
| cairo | fixed | 1.14.0-2.1+deb8u2 | jessie | package |
Примечания
Upstream bug: https://bugs.freedesktop.org/show_bug.cgi?id=98165
Proposed patch upstream: https://bugs.freedesktop.org/attachment.cgi?id=127421
EPSS
Связанные уязвимости
Integer overflow in the write_png function in cairo 1.14.6 allows remote attackers to cause a denial of service (invalid pointer dereference) via a large svg file.
Integer overflow in the write_png function in cairo 1.14.6 allows remote attackers to cause a denial of service (invalid pointer dereference) via a large svg file.
Integer overflow in the write_png function in cairo 1.14.6 allows remote attackers to cause a denial of service (invalid pointer dereference) via a large svg file.
Integer overflow in the write_png function in cairo 1.14.6 allows remote attackers to cause a denial of service (invalid pointer dereference) via a large svg file.
EPSS