Lucene search

MitreCVELIST:CVE-2018-19876

HistoryOct 03, 2022 - 4:21 p.m.

CVE-2018-19876

2022-10-0316:21:55

mitre

www.cve.org

cve-2018-19876

cairo

memory management

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

39.2%

JSON

cairo 1.16.0, in cairo_ft_apply_variations() in cairo-ft-font.c, would free memory using a free function incompatible with WebKit’s fastMalloc, leading to an application crash with a “free(): invalid pointer” error.

References

bugs.webkit.org/show_bug.cgi?id=191595

gitlab.freedesktop.org/cairo/cairo/merge_requests/5