CVE-2014-2977

2014-06-11T14:55:00
ID CVE-2014-2977
Type cve
Reporter cve@mitre.org
Modified 2018-10-30T16:27:00

Description

Multiple integer signedness errors in the Dispatch_Write function in proxy/dispatcher/idirectfbsurface_dispatcher.c in DirectFB 1.4.13 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the Voodoo interface, which triggers a stack-based buffer overflow.