CVE-2013-0800 (retired)

Priority
Description
Integer signedness error in the pixman_fill_sse2 function in pixman-sse2.c
in Pixman, as distributed with Cairo and used in Mozilla Firefox before
20.0, Firefox ESR 17.x before 17.0.5, Thunderbird before 17.0.5,
Thunderbird ESR 17.x before 17.0.5, SeaMonkey before 2.17, and other
products, allows remote attackers to execute arbitrary code via crafted
values that trigger attempted use of a (1) negative box boundary or (2)
negative box size, leading to an out-of-bounds write operation.
Notes
 jdstrand> xulrunner-1.9.2 unmaintained upstream (see README.mozilla for
  details)
Assigned-to
chrisccoulson
Package
Upstream:released (20.0)
Ubuntu 14.04 LTS (Trusty Tahr):released (20.0+build1-0ubuntu1)
Package
Upstream:pending (2.17)
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:released (17.0.5)
Ubuntu 14.04 LTS (Trusty Tahr):released (17.0.5+build1-0ubuntu1)
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):DNE
More Information

Updated: 2019-03-26 12:06:21 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)