Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description 2D graphics library with support for multiple output devices (32-bit)
Version 1.18.0-2 [multilib]


Group Affected Fixed Severity Status Ticket
AVG-1392 1.17.4-4 1.17.4-5 Medium Fixed FS#70017
AVG-827 1.16.0-1 1.16.0-2 Critical Fixed
Issue Group Severity Remote Type Description
CVE-2020-35492 AVG-1392 Medium No Arbitrary code execution
A flaw was found in cairo's image-compositor.c. An attacker who is able to provide a crafted input file to cairo's image-compositor (e.g. by convincing a...
CVE-2018-19876 AVG-827 Critical Yes Arbitrary code execution
A memory-corruption issue has been found in cairo versions <= 1.16.0, in the cairo_ft_apply_variations() function in cairo-ft-font.c. This function frees...