CVE-2017-7475

Source
Severity Low
Remote No
Type Denial of service
Description
Cairo is vulnerable to a NULL pointer dereference related to the FT_Load_Glyph and FT_Render_Glyph resulting in an application crash.
Group Package Affected Fixed Severity Status Ticket
AVG-277 cairo 1.15.14-1 Low Vulnerable
References
https://bugs.freedesktop.org/show_bug.cgi?id=100763
http://seclists.org/oss-sec/2017/q2/151
https://gitlab.freedesktop.org/cairo/cairo/issues/80
Notes
Reproducer and report: https://bugs.freedesktop.org/attachment.cgi?id=131198