MGASA-2021-0497 - Updated cairo packages fix security vulnerability

Publication date: 29 Oct 2021
URL: https://advisories.mageia.org/MGASA-2021-0497.html
Type: security
Affected Mageia releases: 8
CVE: CVE-2019-6462

An issue was discovered in cairo 1.16.0. There is an infinite loop in the
function _arc_error_normalized in the file cairo-arc.c, related to
_arc_max_angle_for_tolerance_normalized. (CVE-2019-6462)

References:
- https://bugs.mageia.org/show_bug.cgi?id=29582
- https://lists.suse.com/pipermail/sle-security-updates/2021-October/009644.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6462

SRPMS:
- 8/core/cairo-1.16.0-6.1.mga8