ID CVE-2018-19876
Summary cairo 1.16.0, in cairo_ft_apply_variations() in cairo-ft-font.c, would free memory using a free function incompatible with WebKit's fastMalloc, leading to an application crash with a "free(): invalid pointer" error.
References
Vulnerable Configurations
CVSS
Base: None
Impact:
Exploitability:
nessus via4
NASL family Fedora Local Security Checks
NASL id FEDORA_2018-3A195026F5.NASL
description This update lowers amount of color artefacts around glyphs when subpixel rendering is enabled for text by using freetype's default LCD filter. It also fixes a crash caused by using of wrong function for freeing of memory (CVE-2018-19876). Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
last seen 2019-01-16
modified 2019-01-03
plugin id 120358
published 2019-01-03
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=120358
title Fedora 29 : cairo (2018-3a195026f5)
refmap via4
misc
Last major update 05-12-2018 - 15:29
Published 05-12-2018 - 15:29
Last modified 05-12-2018 - 15:29
Back to Top