漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
A flaw was found in cairo's image-compositor.c in all versions prior to 1.17.4. This flaw allows an attacker who can provide a crafted input file to cairo's image-compositor (for example, by convincing a user to open a file in an application using cairo, or if an application uses cairo on untrusted input) to cause a stack buffer overflow -> out-of-bounds WRITE. The highest impact from this vulnerability is to confidentiality, integrity, as well as system availability.
CVSS Information
N/A
Vulnerability Type
栈缓冲区溢出
Vulnerability Title
cairo 缓冲区错误漏洞
Vulnerability Description
cairo是cairo开源的一个让用于提供矢量图形绘图的自由库。提供在多个背景下做二维空间的绘图,高级的更可以使用硬件加速功能。 cairo 1.17.4之前版本存在缓冲区错误漏洞,攻击者利用该漏洞通过特制文件导致堆栈缓冲区溢出,从而越界写入。
CVSS Information
N/A
Vulnerability Type
N/A