mirror of
https://github.com/godotengine/buildroot.git
synced 2026-01-06 18:09:44 +03:00
0387eaaefc
Fixes the following security issues: - CVE-2017-9814:cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) because of mishandling of an unexpected malloc(0) call. - CVE-2018-19876: cairo 1.16.0, in cairo_ft_apply_variations() in cairo-ft-font.c, would free memory using a free function incompatible with WebKit's fastMalloc, leading to an application crash with a "free(): invalid pointer" error. For more details, see the announcement: https://www.cairographics.org/news/cairo-1.15.14/ Signed-off-by: Peter Korsgaard <peter@korsgaard.com>