8377 moderate openSUSE Leap 15.0 Update This update for cairo fixes the following issues: The following security vulnerability was addressed: - CVE-2017-9814: Fixed and out-of-bounds read in cairo-truetype-subset.c by replacing the malloc implementation with _cairo_malloc and checking the size before memory allocation (bsc#1049092) This update was imported from the SUSE:SLE-15:Update update project. cairo-1.15.10-lp150.3.3.1.src.rpm cairo-debugsource-1.15.10-lp150.3.3.1.x86_64.rpm cairo-devel-1.15.10-lp150.3.3.1.x86_64.rpm cairo-tools-1.15.10-lp150.3.3.1.x86_64.rpm cairo-tools-debuginfo-1.15.10-lp150.3.3.1.x86_64.rpm libcairo-gobject2-1.15.10-lp150.3.3.1.x86_64.rpm libcairo-gobject2-debuginfo-1.15.10-lp150.3.3.1.x86_64.rpm libcairo-script-interpreter2-1.15.10-lp150.3.3.1.x86_64.rpm libcairo-script-interpreter2-debuginfo-1.15.10-lp150.3.3.1.x86_64.rpm libcairo2-1.15.10-lp150.3.3.1.x86_64.rpm libcairo2-debuginfo-1.15.10-lp150.3.3.1.x86_64.rpm cairo-debugsource-1.15.10-lp150.3.3.1.i586.rpm cairo-devel-1.15.10-lp150.3.3.1.i586.rpm cairo-devel-32bit-1.15.10-lp150.3.3.1.x86_64.rpm cairo-tools-1.15.10-lp150.3.3.1.i586.rpm cairo-tools-debuginfo-1.15.10-lp150.3.3.1.i586.rpm libcairo-gobject2-1.15.10-lp150.3.3.1.i586.rpm libcairo-gobject2-32bit-1.15.10-lp150.3.3.1.x86_64.rpm libcairo-gobject2-32bit-debuginfo-1.15.10-lp150.3.3.1.x86_64.rpm libcairo-gobject2-debuginfo-1.15.10-lp150.3.3.1.i586.rpm libcairo-script-interpreter2-1.15.10-lp150.3.3.1.i586.rpm libcairo-script-interpreter2-32bit-1.15.10-lp150.3.3.1.x86_64.rpm libcairo-script-interpreter2-32bit-debuginfo-1.15.10-lp150.3.3.1.x86_64.rpm libcairo-script-interpreter2-debuginfo-1.15.10-lp150.3.3.1.i586.rpm libcairo2-1.15.10-lp150.3.3.1.i586.rpm libcairo2-32bit-1.15.10-lp150.3.3.1.x86_64.rpm libcairo2-32bit-debuginfo-1.15.10-lp150.3.3.1.x86_64.rpm libcairo2-debuginfo-1.15.10-lp150.3.3.1.i586.rpm