Search for packages
| purl | pkg:deb/debian/cairo@1.16.0-5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-2j7g-h71b-7bfc
Aliases: CVE-2019-6462 |
An issue was discovered in cairo 1.16.0. There is an infinite loop in the function _arc_error_normalized in the file cairo-arc.c, related to _arc_max_angle_for_tolerance_normalized. |
Affected by 0 other vulnerabilities. |
|
VCID-tx1v-sbu7-eqbt
Aliases: CVE-2019-6461 |
An issue was discovered in cairo 1.16.0. There is an assertion problem in the function _cairo_arc_in_direction in the file cairo-arc.c. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-9xcs-qa8x-sqfy | A flaw was found in cairo's image-compositor.c in all versions prior to 1.17.4. This flaw allows an attacker who can provide a crafted input file to cairo's image-compositor (for example, by convincing a user to open a file in an application using cairo, or if an application uses cairo on untrusted input) to cause a stack buffer overflow -> out-of-bounds WRITE. The highest impact from this vulnerability is to confidentiality, integrity, as well as system availability. |
CVE-2020-35492
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-08-01T18:54:38.761476+00:00 | Debian Oval Importer | Fixing | VCID-9xcs-qa8x-sqfy | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 37.0.0 |
| 2025-08-01T12:58:47.493949+00:00 | Debian Importer | Affected by | VCID-2j7g-h71b-7bfc | https://security-tracker.debian.org/tracker/data/json | 37.0.0 |
| 2025-08-01T12:36:13.669238+00:00 | Debian Importer | Affected by | VCID-tx1v-sbu7-eqbt | https://security-tracker.debian.org/tracker/data/json | 37.0.0 |