{"id":"JLSEC-2025-13","summary":"cairo through 1.15.14 has an out-of-bounds stack-memory write during processing of a crafted documen...","details":"cairo through 1.15.14 has an out-of-bounds stack-memory write during processing of a crafted document by WebKitGTK+ because of the interaction between cairo-rectangular-scan-converter.c (the generate and render_rows functions) and cairo-image-compositor.c (the _cairo_image_spans_and_zero function).","modified":"2025-11-03T00:18:30.330889Z","published":"2025-10-10T13:22:08.213Z","upstream":["CVE-2018-18064"],"database_specific":{"license":"CC-BY-4.0","sources":[{"id":"CVE-2018-18064","modified":"2024-11-21T03:55:25.210Z","html_url":"https://nvd.nist.gov/vuln/detail/CVE-2018-18064","published":"2018-10-08T18:29:00.270Z","url":"https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2018-18064","imported":"2025-10-09T21:00:34.747Z"}]},"references":[{"type":"WEB","url":"https://gitlab.freedesktop.org/cairo/cairo/issues/341"},{"type":"WEB","url":"https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E"}],"affected":[{"package":{"name":"Cairo_jll","ecosystem":"Julia","purl":"pkg:julia/Cairo_jll?uuid=83423d85-b0ee-5818-9007-b63ccbeb887a"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"1.16.0+0"}]}],"database_specific":{"source":"https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2025/JLSEC-2025-13.json"}}],"schema_version":"1.7.3"}