|
From: | Alan Coopersmith |
Subject: | [ft-devel] WebKit & Cairo vs. FT_Done_MM_Var |
Date: | Wed, 5 Dec 2018 15:43:49 -0800 |
User-agent: | Mozilla/5.0 (X11; SunOS i86pc; rv:52.0) Gecko/20100101 Thunderbird/52.9.1 |
Just FYI, a CVE has been published for WebKit setting up a custom allocator for FreeType but Cairo using the standard free() call instead of calling FreeType to dispose of memory from it: https://bugs.webkit.org/show_bug.cgi?id=191595 https://gitlab.freedesktop.org/cairo/cairo/merge_requests/5 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19876 -- -Alan Coopersmith- address@hidden Oracle Solaris Engineering - https://blogs.oracle.com/alanc
[Prev in Thread] | Current Thread | [Next in Thread] |