[cairo-bugs] [Bug 101547] Heap buffer overflow at cairo-truetype-subset.c:1299, CVE-2017-9814
bugzilla-daemon at freedesktop.org
bugzilla-daemon at freedesktop.org
Wed Apr 25 03:17:32 UTC 2018
https://bugs.freedesktop.org/show_bug.cgi?id=101547
qzheng <qzheng at suse.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |qzheng at suse.com
--- Comment #9 from qzheng <qzheng at suse.com> ---
Created attachment 139088
--> https://bugs.freedesktop.org/attachment.cgi?id=139088&action=edit
Check cmap size before allocating and replace malloc() with _cairo_malloc().
Check cmap size before allocating and replace malloc() with _cairo_malloc().
--
You are receiving this mail because:
You are the QA Contact for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.cairographics.org/archives/cairo-bugs/attachments/20180425/2a045a5c/attachment.html>
More information about the cairo-bugs
mailing list