Integer overflow in the make_filter_table function in pixops/pixops.c in gdk-pixbuf before 2.31.5, as used in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 on Linux, Google Chrome on Linux, and other products, allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow and application crash) via crafted bitmap dimensions that are mishandled during scaling.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mozilla
Published: 2015-08-16T01:00:00
Updated: 2016-12-22T18:57:01
Reserved: 2015-06-10T00:00:00
Link: CVE-2015-4491
JSON object: View
NVD Information
Status : Modified
Published: 2015-08-16T01:59:19.143
Modified: 2018-10-30T16:27:35.843
Link: CVE-2015-4491
JSON object: View
Redhat Information
No data.
CWE