8 matches found
SUSE-SU-2022:3493-1 Security update for libcroco
This update for libcroco fixes the following issues: - CVE-2020-12825: Fixed recursion issue in block and any productions bsc1171685...
OPENSUSE-SU-2021:1294-1 Security update for libcroco
This update for libcroco fixes the following issues: - CVE-2020-12825: Fixed recursion issue in block and any productions bsc1171685. This update was imported from the SUSE:SLE-15-SP2:Update update project...
SUSE-SU-2021:3123-1 Security update for libcroco
This update for libcroco fixes the following issues: - CVE-2020-12825: Fixed recursion issue in block and any productions bsc1171685...
SUSE-SU-2021:14800-1 Security update for libcroco
This update for libcroco fixes the following issues: - CVE-2020-12825: Fixed recursion issue in block and any productions bsc1171685...
OPENSUSE-SU-2020:0780-1 Security update for libcroco
This update for libcroco fixes the following issues: Security issues fixed: - CVE-2017-8834: Fixed denial of service memory allocation error via a crafted CSS file bsc1043898. - CVE-2017-8871: Fixed denial of service infinite loop and CPU consumption via a crafted CSS file bsc1043899. This update...
SUSE-SU-2020:1535-1 Security update for libcroco
This update for libcroco fixes the following issues: Security issues fixed: - CVE-2017-8834: Fixed denial of service memory allocation error via a crafted CSS file bsc1043898. - CVE-2017-8871: Fixed denial of service infinite loop and CPU consumption via a crafted CSS file bsc1043899...
SUSE-SU-2019:1468-1 Security update for libcroco
This update for libcroco fixes the following issues: Security issues fixed: - CVE-2017-7960: Fixed heap overflow input: check end of input before reading a byte bsc1034481. - CVE-2017-7961: Fixed undefined behavior tknzr: support only max long rgb values bsc1034482. - CVE-2017-8834: Fixed denial ...
[SECURITY] [DLA 909-1] libcroco security update
Package : libcroco Version : 0.6.6-2+deb7u1 CVE ID : CVE-2017-7960 CVE-2017-7961 Debian Bug : 860961 CVE-2017-7960 A heap-based buffer over-read vulnerability could be triggered remotely via a crafted CSS file to cause a denial of service. CVE-2017-7961 An "outside the range of representable valu...