Описание
cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) because of mishandling of an unexpected malloc(0) call.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | cairo | Will not fix | ||
| Red Hat Enterprise Linux 6 | cairo | Will not fix | ||
| Red Hat Enterprise Linux 7 | cairo | Will not fix | ||
| Red Hat Enterprise Virtualization 3 | mingw-virt-viewer | Will not fix |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-125
https://bugzilla.redhat.com/show_bug.cgi?id=1472788cairo: Out-of-bounds read due to mishandling of unexpected malloc(0) call
3.3 Low
CVSS3
Связанные уязвимости
CVSS3: 7.5
ubuntu
больше 8 лет назад
cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) because of mishandling of an unexpected malloc(0) call.
CVSS3: 7.5
nvd
больше 8 лет назад
cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) because of mishandling of an unexpected malloc(0) call.
CVSS3: 7.5
debian
больше 8 лет назад
cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote atta ...
3.3 Low
CVSS3