0.003 Low
EPSS
Percentile
70.5%
libcairo.so is vulnerable to denial of service (DoS) attacks. The vulnerability exists due to the possibility of an infinite loop in the _arc_error_normalized function, which occurs when error and tolerance are both 0.
_arc_error_normalized
github.com/TeamSeri0us/pocs/tree/master/gerbv
gitlab.freedesktop.org/cairo/cairo/issues/353
lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772@%3Cdev.mina.apache.org%3E