Key Information Bug ID: 1034230 Title: [cairo] Potential use of uninitialized Status: Closed Resolution: FIXED Product: Core Component: Graphics Type: defect Severity: normal Reported: 11 years ago Resolved: 11 years ago Description: In the function, when processing the command, and are accessed without guaranteeing they have been initialized. Fix: A patch was provided to address the issue with in Type1 charstrings. Security Assessment: Rated as , as although it may generate PDFs with incorrect characters, it is not considered a significant security issue. Patch Location: - mozilla-inbound - mozilla-central Additional Notes: - The issue has been fixed upstream in cairo and is no longer present. - The vulnerability was discovered through Covery code auditing.