user/cairo: multiple vulnerabilities
Bugzilla ID | 131 |
Alias(es) | CVE-2017-9814, CVE-2019-6461, CVE-2019-6462 |
Reporter | Max Rees (sroracle) |
Assignee | Max Rees (sroracle) |
Reported | 2019-07-31 06:32:35 -0500 |
Modified | 2020-07-16 18:43:25 -0500 |
Status | CONFIRMED |
Version | 1.0-BETA3 |
Hardware | Adélie Linux / All |
Importance | --- / minor |
Package(s) | user/cairo |
Description
CVE-2019-6461: https://nvd.nist.gov/vuln/detail/CVE-2019-6461
An issue was discovered in cairo 1.16.0. There is an assertion problem
in the function _cairo_arc_in_direction in the file cairo-arc.c.
CVE-2019-6462: https://nvd.nist.gov/vuln/detail/CVE-2019-6462
An issue was discovered in cairo 1.16.0. There is an infinite loop in
the function _arc_error_normalized in the file cairo-arc.c, related to
_arc_max_angle_for_tolerance_normalized.