Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2017-7475 - log back

CVE-2017-7475 created at 25 Sep 2019 19:31:40

Severity

+

Low

Remote

+

Local

Type

+	Denial of service

Description

+	Cairo is vulnerable to a NULL pointer dereference related to the FT_Load_Glyph and FT_Render_Glyph resulting in an application crash.

References

+	https://bugs.freedesktop.org/show_bug.cgi?id=100763
+	http://seclists.org/oss-sec/2017/q2/151
+	https://gitlab.freedesktop.org/cairo/cairo/issues/80

Notes

+	Reproducer and report: https://bugs.freedesktop.org/attachment.cgi?id=131198