from 0, < 1.14.8-1+deb9u1
from 0, < 1.16.0-5
HIGH7.5CVE-2017-9814cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) because of mi… from 0, < 1.16.0-1
HIGH7.5The fill_xrgb32_lerp_opaque_spans function in cairo-image-compositor.c in cairo before 1.14.2 allows remote attackers to cause a denial of…
from 0, < 1.14.2-2
MEDIUM6.5An issue was discovered in cairo 1.16.0.
from 0
MEDIUM6.5An issue was discovered in cairo 1.16.0.
from 0
MEDIUM6.5cairo 1.16.0, in cairo_ft_apply_variations() in cairo-ft-font.c, would free memory using a free function incompatible with WebKit's fastMal…
from 0, < 1.16.0-4
MEDIUM6.5cairo through 1.15.14 has an out-of-bounds stack-memory write during processing of a crafted document by WebKitGTK+ because of the interact…
from 0
MEDIUM5.5cairo is vulnerable to denial of service due to a null pointer dereference
from 0
MEDIUM5.5cairo - security update
from 0, < 1.14.6-1.1
MEDIUM5.5cairo - security update
from 0, < 1.12.2-3+deb7u1
LOW2.9Cairo through 1.18.4, as used in Poppler through 25.08.0, has an "unscaled->face == NULL" assertion failure for _cairo_ft_unscaled_font_fin…
from 0
—Mozilla Firefox 3.0.10 and earlier on Linux allows remote attackers to cause a denial of service (application crash) via a URI for a large…
from 0, < 1.8.8-2