Package "libcroco-tools"

Name:	libcroco-tools
Description:	Cascading Style Sheet (CSS) parsing and manipulation toolkit - utils
Latest version:	0.6.13-1ubuntu0.1
Release:	focal (20.04)
Level:	security
Repository:	universe
Head package:	libcroco

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Download "libcroco-tools"

32-bit deb package

64-bit deb package

APT INSTALL

Other versions of "libcroco-tools" in Focal

Repository	Area	Version
base	universe	0.6.13-1
updates	universe	0.6.13-1ubuntu0.1

Changelog

Version: 0.6.13-1ubuntu0.1 2024-08-12 15:07:24 UTC

libcroco (0.6.13-1ubuntu0.1) focal-security; urgency=medium * SECURITY UPDATE: Denial of Service - debian/patches/CVE-2017-8834-8871.patch: cr_utils_read_char_from_utf8_buf: move past invalid UTF-8 - debian/patches/CVE-2020-12825.patch: libcroco: Limit recursion in block and any productions - CVE-2017-8834 - CVE-2017-8871 - CVE-2020-12825 -- Allen Huang <email address hidden> Thu, 08 Aug 2024 15:55:33 +0100

CVE-2017-8834	The cr_tknzr_parse_comment function in cr-tknzr.c in libcroco 0.6.12 allows remote attackers to cause a denial of service (memory allocation error) v
CVE-2020-12825	libcroco through 0.6.13 has excessive recursion in cr_parser_parse_any_core in cr-parser.c, leading to stack consumption.
CVE-2017-8871	The cr_parser_parse_selector_core function in cr-parser.c in libcroco 0.6.12 allows remote attackers to cause a denial of service (infinite loop and

About - Send Feedback to @ubuntu_updates

Package "libcroco-tools"

Links

Download "libcroco-tools"

Other versions of "libcroco-tools" in Focal

Changelog

Share this page

Bookmarks

Latest updates

proposed

updates

backports

PPA updates