Wind River Support Network

HomeDefectsLIN1019-199
Acknowledged

LIN1019-199 : Security Advisory - cairo - CVE-2018-18064

Created: Jan 2, 2019    Updated: Nov 13, 2019
Found In Version: 10.19.45.1
Severity: Standard
Applicable for: Wind River Linux LTS 19
Component/s: Userspace

Description

cairo through 1.15.14 has an out-of-bounds stack-memory write during processing of a crafted document by WebKitGTK+ because of the interaction between cairo-rectangular-scan-converter.c (the generate and render_rows functions) and cairo-image-compositor.c (the _cairo_image_spans_and_zero function).

https://nvd.nist.gov/vuln/detail/CVE-2018-18064
Live chat
Online