Updated cairo packages fix security vulnerability
Publication date: 15 May 2022Type: security
Affected Mageia releases : 8
CVE: CVE-2017-9814
Description
cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) because of mishandling of an unexpected malloc(0) call. (CVE-2017-9814)
References
SRPMS
8/core
- cairo-1.16.0-6.2.mga8