Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Cairographics Subscribe
Total 10 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-35492 1 Cairographics 1 Cairo 2023-02-12 6.8 MEDIUM 7.8 HIGH
A flaw was found in cairo's image-compositor.c in all versions prior to 1.17.4. This flaw allows an attacker who can provide a crafted input file to cairo's image-compositor (for example, by convincing a user to open a file in an application using cairo, or if an application uses cairo on untrusted input) to cause a stack buffer overflow -> out-of-bounds WRITE. The highest impact from this vulnerability is to confidentiality, integrity, as well as system availability.
CVE-2017-7475 1 Cairographics 1 Cairo 2023-02-12 4.3 MEDIUM 5.5 MEDIUM
Cairo version 1.15.4 is vulnerable to a NULL pointer dereference related to the FT_Load_Glyph and FT_Render_Glyph resulting in an application crash.
CVE-2018-18064 1 Cairographics 1 Cairo 2021-03-15 4.3 MEDIUM 6.5 MEDIUM
cairo through 1.15.14 has an out-of-bounds stack-memory write during processing of a crafted document by WebKitGTK+ because of the interaction between cairo-rectangular-scan-converter.c (the generate and render_rows functions) and cairo-image-compositor.c (the _cairo_image_spans_and_zero function).
CVE-2017-9814 2 Cairographics, Opensuse 2 Cairo, Leap 2021-03-04 5.0 MEDIUM 7.5 HIGH
cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) because of mishandling of an unexpected malloc(0) call.
CVE-2019-6462 1 Cairographics 1 Cairo 2021-03-04 4.3 MEDIUM 6.5 MEDIUM
An issue was discovered in cairo 1.16.0. There is an infinite loop in the function _arc_error_normalized in the file cairo-arc.c, related to _arc_max_angle_for_tolerance_normalized.
CVE-2019-6461 1 Cairographics 1 Cairo 2021-03-04 4.3 MEDIUM 6.5 MEDIUM
An issue was discovered in cairo 1.16.0. There is an assertion problem in the function _cairo_arc_in_direction in the file cairo-arc.c.
CVE-2016-9082 1 Cairographics 1 Cairo 2019-04-02 4.3 MEDIUM 5.5 MEDIUM
Integer overflow in the write_png function in cairo 1.14.6 allows remote attackers to cause a denial of service (invalid pointer dereference) via a large svg file.
CVE-2018-19876 1 Cairographics 1 Cairo 2019-01-31 4.3 MEDIUM 6.5 MEDIUM
cairo 1.16.0, in cairo_ft_apply_variations() in cairo-ft-font.c, would free memory using a free function incompatible with WebKit's fastMalloc, leading to an application crash with a "free(): invalid pointer" error.
CVE-2016-3190 2 Cairographics, Opensuse 2 Cairo, Opensuse 2018-10-30 5.0 MEDIUM 7.5 HIGH
The fill_xrgb32_lerp_opaque_spans function in cairo-image-compositor.c in cairo before 1.14.2 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a negative span length.
CVE-2014-5116 1 Cairographics 1 Cairo 2014-07-30 5.0 MEDIUM N/A
The cairo_image_surface_get_data function in Cairo 1.10.2, as used in GTK+ and Wireshark, allows context-dependent attackers to cause a denial of service (NULL pointer dereference) via a large string.