Integer overflow in the make_filter_table function in pixops/pixops.c in gdk-pixbuf before 2.31.5, as used in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 on Linux, Google Chrome on Linux, and other products, allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow and application crash) via crafted bitmap dimensions that are mishandled during scaling.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mozilla
Published: 2015-08-16T01:00:00
Updated: 2024-08-06T06:18:11.566Z
Reserved: 2015-06-10T00:00:00
Link: CVE-2015-4491
Vulnrichment
No data.
NVD
Status : Modified
Published: 2015-08-16T01:59:19.143
Modified: 2018-10-30T16:27:35.843
Link: CVE-2015-4491
Redhat