« List of all CVEs

CVE-2016-3190

Published: 4/21/2016 Last updated: 8/5/2024 Reserved: 3/15/2016

The fill_xrgb32_lerp_opaque_spans function in cairo-image-compositor.c in cairo before 1.14.2 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a negative span length.

CNA assigner: mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca) Requested by: n/a

Opam packages affected (1)

conf-cairo

Products affected (1)

Product Vendor Version
n/a n/a < 10.0.22631.4890

References (8)