1Cairo: Fix Denial-of-Service Attack due to Logical Problem in Program 2 3https://bugs.freedesktop.org/show_bug.cgi?id=100763 4 5CVE: CVE-2017-7475 6Upstream-Status: Submitted 7 8Signed-off-by: Fan Xin <fan.xin@jp.fujitsu.com> 9 10Index: cairo-1.15.4/src/cairo-ft-font.c 11=================================================================== 12--- cairo-1.15.4.orig/src/cairo-ft-font.c 13+++ cairo-1.15.4/src/cairo-ft-font.c 14@@ -1149,7 +1149,7 @@ _get_bitmap_surface (FT_Bitmap *bi 15 width = bitmap->width; 16 height = bitmap->rows; 17 18- if (width == 0 || height == 0) { 19+ if (width == 0 || height == 0 || bitmap->buffer == NULL) { 20 *surface = (cairo_image_surface_t *) 21 cairo_image_surface_create_for_data (NULL, format, 0, 0, 0); 22 return (*surface)->base.status; 23