21 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-9814
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote attackers to cause a denial of service out-of-bounds read because of mishandling of an...
Ubuntu: Security Advisory (USN-5407-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2022-0186 Updated cairo packages fix security vulnerability
cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote attackers to cause a denial of service out-of-bounds read because of mishandling of an unexpected malloc0 call. CVE-2017-9814...
USN-5407-1: Cairo vulnerabilities
Gustavo Grieco, Alberto Garcia, Francisco Oca, Suleman Ali, and others discovered that Cairo incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service. CVE-2016-9082, CVE-2017-9814, CVE-2019-6462 Stephan Bergmann discovered that Cairo incorrectly...
SUSE: Security Advisory (SUSE-SU-2018:1195-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : cairo (openSUSE-2020-1003)
This update for cairo fixes the following issues : - Fix a memory corruption in pango. - Revert 'Correctly decode Adobe CMYK JPEGs in PDF export'. - Add more FreeeType font color conversions to support COLR/CPAL. - Fix crash when rendering Microsoft's Segoe UI Emoji Regular font. - Fix memory lea...
Security update for cairo (moderate)
openSUSE Security Update: Security update for cairo Announcement ID: openSUSE-SU-2020:1003-1 Rating: moderate References: 1049092 Cross-References: CVE-2017-9814 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for cairo fixes...
SUSE SLED15 / SLES15 Security Update : cairo (SUSE-SU-2020:1937-1)
This update for cairo fixes the following issues : Fix a memory corruption in pango. Revert 'Correctly decode Adobe CMYK JPEGs in PDF export'. Add more FreeeType font color conversions to support COLR/CPAL. Fix crash when rendering Microsoft's Segoe UI Emoji Regular font. Fix memory leaks found b...
EulerOS Virtualization 3.0.6.0 : cairo (EulerOS-SA-2020-1735)
According to the version of the cairo packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote attackers to cause a denial of service out-of-bounds read because o...
EulerOS 2.0 SP3 : cairo (EulerOS-SA-2019-2268)
According to the version of the cairo packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote attackers to cause a denial of service out-of-bounds read because of mishandling o...
openSUSE Security Update : cairo (openSUSE-2019-500)
This update for cairo fixes the following issues : The following security vulnerability was addressed : - CVE-2017-9814: Fixed and out-of-bounds read in cairo-truetype-subset.c by replacing the malloc implementation with cairomalloc and checking the size before memory allocation bsc1049092 This...
SUSE SLED15 / SLES15 Security Update : cairo (SUSE-SU-2018:1873-1)
This update for cairo fixes the following issues: The following security vulnerability was addressed : - CVE-2017-9814: Fixed and out-of-bounds read in cairo-truetype-subset.c by replacing the malloc implementation with cairomalloc and checking the size before memory allocation bsc1049092 Note th...
Photon OS 1.0: Cairo / Go / Libxml2 / Openvswitch PHSA-2017-0039 (deprecated)
An update of cairo,openvswitch,libxml2,go packages for PhotonOS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0039. The text itself is copyright C...
SUSE-SU-2018:1873-1 Security update for cairo
This update for cairo fixes the following issues: The following security vulnerability was addressed: - CVE-2017-9814: Fixed and out-of-bounds read in cairo-truetype-subset.c by replacing the malloc implementation with cairomalloc and checking the size before memory allocation bsc1049092...
SUSE SLES11 Security Update : cairo (SUSE-SU-2018:1453-1)
This update for cairo fixes the following issues : - CVE-2016-9082: Fixed a segfault when using 4GB images since int values were used for pointer operations bsc1007255. - CVE-2017-9814: Replace malloc with cairomalloc and check cmap size before allocating to prevent DoS bsc1049092. - CVE-2017-747...
openSUSE Security Update : cairo (openSUSE-2018-445)
This update for cairo fixes the following issues : - CVE-2017-9814: out-of-bounds read in cairo-truetype-subset.c could lead to denial of service bsc1049092. This update was imported from the SUSE:SLE-12-SP2:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descripti...
SUSE SLED12 / SLES12 Security Update : cairo (SUSE-SU-2018:1195-1)
This update for cairo fixes the following issues : - CVE-2017-9814: out-of-bounds read in cairo-truetype-subset.c could lead to denial of service bsc1049092. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has...
SUSE-SU-2018:1195-1 Security update for cairo
This update for cairo fixes the following issues: - CVE-2017-9814: out-of-bounds read in cairo-truetype-subset.c could lead to denial of service bsc1049092...
CVE-2017-9814
cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote attackers to cause a denial of service out-of-bounds read because of mishandling of an unexpected malloc0 call...
CVE-2017-9814
cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote attackers to cause a denial of service out-of-bounds read because of mishandling of an unexpected malloc0 call...