Information on source package cairo

Available versions

ReleaseVersion
bullseye1.16.0-5
bookworm1.16.0-7
trixie1.18.2-2
sid1.18.2-2

Open issues

BugbullseyebookwormtrixiesidDescription
CVE-2019-6462vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedAn issue was discovered in cairo 1.16.0. There is an infinite loop in ...
CVE-2019-6461vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedAn issue was discovered in cairo 1.16.0. There is an assertion problem ...
CVE-2018-18064vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)vulnerablevulnerablecairo through 1.15.14 has an out-of-bounds stack-memory write during p ...
CVE-2017-7475vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)vulnerablevulnerableCairo version 1.15.4 is vulnerable to a NULL pointer dereference relat ...

Resolved issues

BugDescription
CVE-2020-35492A flaw was found in cairo's image-compositor.c in all versions prior t ...
CVE-2018-19876cairo 1.16.0, in cairo_ft_apply_variations() in cairo-ft-font.c, would ...
CVE-2017-9814cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote atta ...
CVE-2016-9082Integer overflow in the write_png function in cairo 1.14.6 allows remo ...
CVE-2016-3190The fill_xrgb32_lerp_opaque_spans function in cairo-image-compositor.c ...
CVE-2009-2044Mozilla Firefox 3.0.10 and earlier on Linux allows remote attackers to ...

Security announcements

DSA / DLADescription
DLA-2518-1cairo - security update
DLA-688-1cairo - security update

Search for package or bug name: Reporting problems