Описание
Security update for cairo
This update for cairo fixes the following issues:
- CVE-2016-9082: Fixed a segfault when using >4GB images since int values were used for pointer operations (bsc#1007255).
- CVE-2017-9814: Replace malloc with _cairo_malloc and check cmap size before allocating to prevent DoS (bsc#1049092).
- CVE-2017-7475: Fix a segfault in get_bitmap_surface due to malformed font (bsc#1036789).
Список пакетов
SUSE Linux Enterprise Server 11 SP4
cairo-1.8.8-2.3.7.1
cairo-32bit-1.8.8-2.3.7.1
cairo-doc-1.8.8-2.3.7.1
cairo-x86-1.8.8-2.3.7.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4
cairo-1.8.8-2.3.7.1
cairo-32bit-1.8.8-2.3.7.1
cairo-doc-1.8.8-2.3.7.1
cairo-x86-1.8.8-2.3.7.1
SUSE Linux Enterprise Software Development Kit 11 SP4
cairo-devel-1.8.8-2.3.7.1
cairo-devel-32bit-1.8.8-2.3.7.1
cairo-doc-1.8.8-2.3.7.1
Ссылки
- Link for SUSE-SU-2018:1453-1
- E-Mail link for SUSE-SU-2018:1453-1
- SUSE Security Ratings
- SUSE Bug 1007255
- SUSE Bug 1036789
- SUSE Bug 1049092
- SUSE CVE CVE-2016-9082 page
- SUSE CVE CVE-2017-7475 page
- SUSE CVE CVE-2017-9814 page
Описание
Integer overflow in the write_png function in cairo 1.14.6 allows remote attackers to cause a denial of service (invalid pointer dereference) via a large svg file.
Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:cairo-1.8.8-2.3.7.1
SUSE Linux Enterprise Server 11 SP4:cairo-32bit-1.8.8-2.3.7.1
SUSE Linux Enterprise Server 11 SP4:cairo-doc-1.8.8-2.3.7.1
SUSE Linux Enterprise Server 11 SP4:cairo-x86-1.8.8-2.3.7.1
Ссылки
- CVE-2016-9082
- SUSE Bug 1007255
Описание
Cairo version 1.15.4 is vulnerable to a NULL pointer dereference related to the FT_Load_Glyph and FT_Render_Glyph resulting in an application crash.
Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:cairo-1.8.8-2.3.7.1
SUSE Linux Enterprise Server 11 SP4:cairo-32bit-1.8.8-2.3.7.1
SUSE Linux Enterprise Server 11 SP4:cairo-doc-1.8.8-2.3.7.1
SUSE Linux Enterprise Server 11 SP4:cairo-x86-1.8.8-2.3.7.1
Ссылки
- CVE-2017-7475
- SUSE Bug 1036789
Описание
cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) because of mishandling of an unexpected malloc(0) call.
Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:cairo-1.8.8-2.3.7.1
SUSE Linux Enterprise Server 11 SP4:cairo-32bit-1.8.8-2.3.7.1
SUSE Linux Enterprise Server 11 SP4:cairo-doc-1.8.8-2.3.7.1
SUSE Linux Enterprise Server 11 SP4:cairo-x86-1.8.8-2.3.7.1
Ссылки
- CVE-2017-9814
- SUSE Bug 1049092