Security update for cairo (moderate)

ID OPENSUSE-SU-2018:1895-1
Type suse
Reporter Suse
Modified 2018-07-06T00:08:57


This update for cairo fixes the following issues:

The following security vulnerability was addressed:

  • CVE-2017-9814: Fixed and out-of-bounds read in cairo-truetype-subset.c by replacing the malloc implementation with _cairo_malloc and checking the size before memory allocation (bsc#1049092)

This update was imported from the SUSE:SLE-15:Update update project.