[Bug 1311882] New: CVE-2014-9766 pixman: integer overflow in create_bits function

bugzilla Thu, 25 Feb 2016 01:27:07 -0800

https://bugzilla.redhat.com/show_bug.cgi?id=1311882


            Bug ID: 1311882
           Summary: CVE-2014-9766 pixman: integer overflow in create_bits
                    function
           Product: Security Response
         Component: vulnerability
          Keywords: Security
          Severity: medium
          Priority: medium
          Assignee: [email protected]
          Reporter: [email protected]
                CC: [email protected], [email protected],
                    [email protected], [email protected],
                    [email protected], [email protected],
                    [email protected],
                    [email protected], [email protected],
                    [email protected], [email protected],
                    [email protected], [email protected],
                    [email protected], [email protected],
                    [email protected], [email protected],
                    [email protected], [email protected]




In create_bits() both height and stride are ints, so the result is
also an int, which will overflow if height or stride are big enough
and size_t is bigger than int.

External references:

https://web.archive.org/web/20141227044037/http://lists.freedesktop.org/archives/pixman/2014-April/003244.html

CVE assignment:

http://seclists.org/oss-sec/2016/q1/425

-- 
You are receiving this mail because:
You are on the CC list for the bug.
_______________________________________________
mingw mailing list
[email protected]
http://lists.fedoraproject.org/admin/lists/[email protected]

[Bug 1311882] New: CVE-2014-9766 pixman: integer overflow in create_bits function

Reply via email to