Vulnerability CVE-2018-19876: Information

Description

cairo 1.16.0, in cairo_ft_apply_variations() in cairo-ft-font.c, would free memory using a free function incompatible with WebKit's fastMalloc, leading to an application crash with a "free(): invalid pointer" error.

Severity: MEDIUM (6.5) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2018-19876
Published: Dec. 5, 2018
Modified: Jan. 31, 2019
Error type identifier: CWE-416

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
libcairosisyphus1.16.0-alt21.18.0-alt1ALT-PU-2022-3396-1312186Fixed
libcairosisyphus_e2k1.16.0-alt21.18.0-alt1ALT-PU-2022-7547-1-Fixed
libcairosisyphus_riscv641.17.8-alt11.18.0-alt1ALT-PU-2023-4618-1-Fixed
libcairop101.16.0-alt21.16.0-alt2ALT-PU-2023-1010-2312192Fixed
libcairop10_e2k1.16.0-alt21.16.0-alt2ALT-PU-2023-2177-1-Fixed
libcairoc10f11.16.0-alt21.16.0-alt2ALT-PU-2023-1010-2312192Fixed
libcairoc9f21.16.0-alt21.16.0-alt2ALT-PU-2023-1002-2312258Fixed
libcairop111.16.0-alt21.18.0-alt1ALT-PU-2022-3396-1312186Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://gitlab.freedesktop.org/cairo/cairo/merge_requests/5
  • Patch
  • Third Party Advisory
https://bugs.webkit.org/show_bug.cgi?id=191595
  • Issue Tracking
  • Patch
  • Third Party Advisory

    1. Configuration 1

      cpe:2.3:a:cairographics:cairo:1.16.0:*:*:*:*:*:*:*
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.5.3
Back to top