Advisories » MGASA-2017-0205

Updated cairo packages fix security vulnerability

Publication date: 13 Jul 2017
Modification date: 13 Jul 2017
Type: security
Affected Mageia releases : 5
CVE: CVE-2016-9082

Description

It was discovered that there was a possible DoS attack in Cairo. An SVG
could generate invalid pointers from a _cairo_image_surface in write_png
(CVE-2016-9082).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=19666
• https://lwn.net/Alerts/705059/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9082

SRPMS

5/core

• cairo-1.14.0-1.1.mga5