Cairo 'cairo-png.c' Integer Overflow Vulnerability

Cairo is prone to an integer-overflow vulnerability.

An attacker may exploit this issue to crash the affected application, resulting in a denial-of-service condition. Due to the nature of this issue, arbitrary code execution may be possible but this has not been confirmed.

Cairo 1.14.2 is vulnerable; prior versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus