Candidate: CVE-2013-1591
PublicDate: 2013-01-31 23:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1591
 http://www.palemoon.org/releasenotes-ng.shtml
 http://www.mail-archive.com/pixman@lists.freedesktop.org/msg02132.html
Description:
 Stack-based buffer overflow in libpixman, as used in Pale Moon before 15.4
 and possibly other products, has unspecified impact and context-dependent
 attack vectors.  NOTE: this issue might be resultant from an integer
 overflow in the fast_composite_scaled_bilinear function in
 pixman-inlines.h, which triggers an infinite loop.
Ubuntu-Description:
Notes:
 jdstrand> reduced to low for stack-protector
 mdeslaur> patch below seems to be difference between Pale Moon 15.3.2 and
 mdeslaur> 15.4
Bugs:
Priority: low
Discovered-by:
Assigned-to: mdeslaur
CVSS: 

Tags_pixman: stack-protector
Patches_pixman:
 upstream: http://cgit.freedesktop.org/pixman/commit/?id=de60e2e0e3eb6084f8f14b63f25b3cbfb012943f
upstream_pixman: needs-triage
hardy_pixman: ignored (reached end-of-life)
lucid_pixman: not-affected (code not present)
oneiric_pixman: not-affected (code not present)
precise_pixman: not-affected (0.30.2-1ubuntu0.0.0.0.2)
quantal_pixman: ignored (reached end-of-life)
raring_pixman: not-affected (0.28.2-0ubuntu1)
saucy_pixman: not-affected (0.28.2-0ubuntu1)
trusty_pixman: not-affected (0.28.2-0ubuntu1)
trusty/esm_pixman: not-affected (0.28.2-0ubuntu1)
utopic_pixman: not-affected (0.28.2-0ubuntu1)
vivid_pixman: not-affected (0.28.2-0ubuntu1)
vivid/stable-phone-overlay_pixman: not-affected (0.28.2-0ubuntu1)
vivid/ubuntu-core_pixman: DNE
wily_pixman: not-affected (0.28.2-0ubuntu1)
devel_pixman: not-affected (0.28.2-0ubuntu1)