Stack-based buffer overflow in libpixman, as used in Pale Moon before 15.4 and possibly other products, has unspecified impact and context-dependent attack vectors. NOTE: this issue might be resultant from an integer overflow in the fast_composite_scaled_bilinear function in pixman-inlines.h, which triggers an infinite loop.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | pixman | < 0.26.0-4 | pixman_0.26.0-4_all.deb |
Debian | 11 | all | pixman | < 0.26.0-4 | pixman_0.26.0-4_all.deb |
Debian | 10 | all | pixman | < 0.26.0-4 | pixman_0.26.0-4_all.deb |
Debian | 999 | all | pixman | < 0.26.0-4 | pixman_0.26.0-4_all.deb |
Debian | 13 | all | pixman | < 0.26.0-4 | pixman_0.26.0-4_all.deb |