3 matches found
Halibut 资源管理错误漏洞
Halibut is a secure, RPC-based open source communication framework. Halibut version 1.2 contains a denial-of-service vulnerability that stems from a mix-up in the cleanupindex directive in index.c, which is responsible for freeing memory. An attacker could exploit this vulnerability to cause a...
cairo 1.16.0 in cairo_ft_apply_variations() in cairo-ft-font.c would free memory using a free function incompatible with WebKit's fastMalloc leading to an application crash with a "free(): invalid pointer" error.
...
PT-2018-15134 · Cairo +1 · Cairo +1
Name of the Vulnerable Software and Affected Versions: cairo version 1.16.0 Description: The issue occurs in the cairo ft apply variations function, located in cairo-ft-font.c, where memory is freed using a function incompatible with WebKit's fastMalloc, resulting in an application crash with a...