cvedb.io
CVE-2016-3190
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2016-04-21T14:59:01.357 · Last modified 2026-06-17T00:45:16.240

Summary

The fill_xrgb32_lerp_opaque_spans function in cairo-image-compositor.c in cairo before 1.14.2 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a negative span length.

Affected products

opensuse — opensuse

Does this affect you?

Add your gear to cvedb and we'll alert you only when opensuse ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.