CVE-2014-5116

Published: Jul 29, 2014Modified: May 6, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

The cairo_image_surface_get_data function in Cairo 1.10.2, as used in GTK+ and Wireshark, allows context-dependent attackers to cause a denial of service (NULL pointer dereference) via a large string.

Affected (1)

Products: Cairographics: Cairo

Cairographics

1 product

Cairo

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Cairographics Cairo	Version 1.10.2

References (6)

http://www.exploit-db.com/exploits/33384

Source: cve@mitre.org

Exploit

http://www.osvdb.org/107083

Source: cve@mitre.org

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9761

Source: cve@mitre.org

http://www.exploit-db.com/exploits/33384

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

http://www.osvdb.org/107083

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9761

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.