Lucene search
K

35 matches found

OSV
OSV
added 2025/08/14 2:35 p.m.5 views

SUSE-SU-2025:02795-1 Security update for cairo

This update for cairo fixes the following issues: - CVE-2019-6462: Fixed a potentially infinite loop bsc1122321...

6.5CVSS5.8AI score0.02142EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2021/11/11 12:0 a.m.17 views

Mozilla Firefox Security Advisory (MFSA2015-22) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

5CVSS9.5AI score0.03656EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2021/11/11 12:0 a.m.23 views

Mozilla Firefox Security Advisory (MFSA2014-41) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

10CVSS9.6AI score0.05556EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/09/10 12:0 a.m.8 views

The vulnerability of the Cairo graphic library in the Mozilla Firefox browser allows a hacker to execute arbitrary code or cause a denial-of-service attack.

The vulnerability of the Cairo graphic library in the Mozilla Firefox browser is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service failure through a specially created malicious web page...

7.6CVSS8.1AI score0.01046EPSS
Exploits1References8Affected Software3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2013:0843-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.7AI score0.07953EPSS
Exploits1References2
Fedora
Fedora
added 2018/12/10 2:32 a.m.27 views

[SECURITY] Fedora 29 Update: cairo-1.16.0-3.fc29

Cairo is a 2D graphics library designed to provide high-quality display and print output. Currently supported output targets include the X Window System, in-memory image buffers, and image files PDF, PostScript, and SVG. Cairo is designed to produce consistent output on all output media while...

6.5CVSS1.3AI score0.01714EPSS
Exploits0
CNVD
CNVD
added 2017/05/23 12:0 a.m.1 views

Cairo denial of service vulnerability

Cairo is a cross-platform open source vector graphics library developed by software developers Carl Worth and Behdad Esfahbod, which supports doing 2D drawings in multiple contexts and provides high-quality display and printouts. A denial of service vulnerability exists in Cairo version 1.15.4. A...

5.5CVSS6.8AI score0.01839EPSS
Exploits0References1
OSV
OSV
added 2017/05/19 8:29 p.m.2 views

DEBIAN-CVE-2017-7475

Cairo version 1.15.4 is vulnerable to a NULL pointer dereference related to the FTLoadGlyph and FTRenderGlyph resulting in an application crash...

5.5CVSS6.9AI score0.01839EPSS
Exploits0References1
OSV
OSV
added 2017/02/03 3:59 p.m.5 views

UBUNTU-CVE-2016-9082

Integer overflow in the writepng function in cairo 1.14.6 allows remote attackers to cause a denial of service invalid pointer dereference via a large svg file...

5.5CVSS6.5AI score0.01995EPSS
Exploits0References4
CNVD
CNVD
added 2016/11/02 12:0 a.m.20 views

Cairo 'cairo-png.c' Integer Overflow Vulnerability

Cairo is a cross-platform open source vector graphics library , it supports in multiple contexts to do 2D drawing , and provides high-quality display and printout . An integer overflow vulnerability exists in Cairo 'cairo-png.c'. An attacker may exploit this issue to crash the affected applicatio...

5.5CVSS7.1AI score0.01995EPSS
Exploits0References1
Mozilla
Mozilla
added 2015/09/22 12:0 a.m.33 views

Out-of-bounds read during 2D canvas display on Linux 16-bit color depth systems — Mozilla

Security researcher Francisco Alonso of the NowSecure Research Team used the Address Sanitizer tool to discover an out-of-bounds read issue during 2D canvas rendering. This was due to an issue in the cairo graphics library when surfaces are created with 32-bit color depth but displayed on a 16-bi...

6.4CVSS5.8AI score0.03493EPSS
Exploits0References2Affected Software2
Tenable Nessus
Tenable Nessus
added 2015/03/24 12:0 a.m.37 views

openSUSE Security Update : seamonkey (openSUSE-2015-250)

SeaMonkey was updated to 2.33 bnc917597 - MFSA 2015-11/CVE-2015-0835/CVE-2015-0836 Miscellaneous memory safety hazards - MFSA 2015-12/CVE-2015-0833 bmo945192 Invoking Mozilla updater will load locally stored DLL files Windows only - MFSA 2015-13/CVE-2015-0832 bmo1065909 Appended period to hostnam...

7.5CVSS7.2AI score0.06029EPSS
Exploits0References19
Tenable Nessus
Tenable Nessus
added 2015/03/17 12:0 a.m.37 views

Mozilla Firefox < 36.0 Multiple Vulnerabilities

Binary data 8653.prm...

7.5CVSS7.4AI score0.06029EPSS
Exploits0References35
Tenable Nessus
Tenable Nessus
added 2015/03/02 12:0 a.m.30 views

FreeBSD : mozilla -- multiple vulnerabilities (99029172-8253-407d-9d8b-2cfeab9abf81)

The Mozilla Project reports : MFSA-2015-11 Miscellaneous memory safety hazards rv:36.0 / rv:31.5 MFSA-2015-12 Invoking Mozilla updater will load locally stored DLL files MFSA-2015-13 Appended period to hostnames can bypass HPKP and HSTS protections MFSA-2015-14 Malicious WebGL content crash when...

7.5CVSS7.2AI score0.06029EPSS
Exploits0References37
Mozilla
Mozilla
added 2015/02/24 12:0 a.m.52 views

Crash using DrawTarget in Cairo graphics library — Mozilla

Security researcher Atte Kettunen used the Address Sanitizer tool to discover a crash while drawing images through the Cairo graphics library while using the DrawTarget function. This can result in a segmentation fault due to zero-ing out of memory outside the bounds of the image...

5CVSS8.8AI score0.03656EPSS
Exploits0References2Affected Software2
OpenVAS
OpenVAS
added 2014/05/06 12:0 a.m.29 views

Mozilla Firefox Denial of Service Vulnerability-01 (May 2014) - Windows

Mozilla Firefox is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.3CVSS7.9AI score0.0598EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2014/05/06 12:0 a.m.25 views

SeaMonkey Denial of Service Vulnerability-01 (May 2014) - Windows

SeaMonkey is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:seamonkey";...

9.3CVSS7.9AI score0.0598EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2014/04/29 12:0 a.m.58 views

SeaMonkey < 2.26 Multiple Vulnerabilities

The installed version of SeaMonkey is a version prior to 2.26 and is, therefore, potentially affected by the following vulnerabilities : - An issue exists in the Network Security NSS library due to improper handling of IDNA domain prefixes for wildcard certificates. This issue could allow man-in-...

10CVSS7AI score0.07543EPSS
Exploits9References25
Tenable Nessus
Tenable Nessus
added 2014/03/22 12:0 a.m.36 views

Ubuntu 12.04 LTS / 12.10 / 13.10 : thunderbird vulnerabilities (USN-2151-1)

Benoit Jacob, Olli Pettay, Jan Varga, Jan de Mooij, Jesse Ruderman, Dan Gohman and Christoph Diehl discovered multiple memory safety issues in Thunderbird. If a user were tricked in to opening a specially crafted message with scripting enabled, an attacker could potentially exploit these to cause...

10CVSS8.1AI score0.83633EPSS
Exploits17References11
Tenable Nessus
Tenable Nessus
added 2014/03/19 12:0 a.m.32 views

Mozilla Thunderbird < 24.4 Multiple Vulnerabilities

The installed version of Thunderbird is a version prior to 24.4 and is, therefore, potentially affected the following vulnerabilities: - Memory issues exist that could lead to arbitrary code execution. CVE-2014-1493, CVE-2014-1494 - An issue exists where extracted files for updates are not...

10CVSS8.5AI score0.83633EPSS
Exploits19References28
Rows per page
Query Builder