VDB
GCVE-110-MAGEIA-2019-389
GCVE-110-MAGEIA-2019-389
Advisory Published
Updated libcroco packages fix security vulnerabilities:
Heap overflow (input: check end of input before reading a byte)
(CVE-2017-7960).
Undefined behavior (tknzr: support only max long rgb values)
(CVE-2017-7961).
Denial of service (memory allocation error) via a crafted CSS file
(CVE-2017-8834).
Denial of service (infinite loop and CPU consumption) via a crafted CSS
file (CVE-2017-8871).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | libcroco | 0 (affected), 0.6.13-1.1.mga7 (unaffected) | — |
Browse GCVE Records
73,685 records in the GCVE database · Updated July 18, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.