{"id":"MGASA-2016-0097","summary":"Updated graphite2 package fixes security vulnerabilities","details":"Updated graphite2 packages fix security vulnerabilities:\n\nMultiple security flaws were found in the graphite2 font library. A web page\nor document containing malicious content could cause an application using\ngraphite2 to crash or, potentially, execute arbitrary code with the\nprivileges of the user running the application (CVE-2016-1977,\nCVE-2016-2790, CVE-2016-2791, CVE-2016-2792, CVE-2016-2793, CVE-2016-2794,\nCVE-2016-2795, CVE-2016-2796, CVE-2016-2797, CVE-2016-2798, CVE-2016-2799,\nCVE-2016-2800, CVE-2016-2801, CVE-2016-2802).\n\nThe graphite2 package has been updated to version 1.3.6 which fixes\nthese security issues.\n","modified":"2026-02-04T02:59:30.182020Z","published":"2016-03-07T11:20:30Z","related":["CVE-2016-1977","CVE-2016-2790","CVE-2016-2791","CVE-2016-2792","CVE-2016-2793","CVE-2016-2794","CVE-2016-2795","CVE-2016-2796","CVE-2016-2797","CVE-2016-2798","CVE-2016-2799","CVE-2016-2800","CVE-2016-2801","CVE-2016-2802"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2016-0097.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=17866"},{"type":"REPORT","url":"https://www.mozilla.org/en-US/security/advisories/mfsa2016-37/"},{"type":"REPORT","url":"https://github.com/silnrsi/graphite/releases/tag/1.3.6"},{"type":"REPORT","url":"https://lists.fedoraproject.org/pipermail/package-announce/2016-March/178192.html"},{"type":"REPORT","url":"https://rhn.redhat.com/errata/RHSA-2016-0373.html"}],"affected":[{"package":{"name":"graphite2","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/graphite2?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.3.6-1.mga5"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2016-0097.json"}}],"schema_version":"1.7.3","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}