CVE-2014-9766

Priority
Description
Integer overflow in the create_bits function in pixman-bits-image.c in
Pixman before 0.32.6 allows remote attackers to cause a denial of service
(application crash) or possibly execute arbitrary code via large height and
stride values.
Assigned-to
mdeslaur
Notes
Package
Upstream:released (0.32.6-1)
Ubuntu 12.04 ESM (Precise Pangolin):released (0.30.2-1ubuntu0.0.0.0.3)
Ubuntu 14.04 ESM (Trusty Tahr):released (0.30.2-2ubuntu1.1)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected
Patches:
Other:https://cgit.freedesktop.org/pixman/commit/?id=857e40f3d2bc2cfb714913e0cd7e6184cf69aca3
More Information

Updated: 2020-07-28 19:53:12 UTC (commit d26b6ca9f5b3adb89bb036ce73ae7dab894935ec)