Lucene search

K
freebsdFreeBSDB278783F-5C1D-11ED-A21F-001FC69CD6DC
HistoryNov 02, 2022 - 12:00 a.m.

pixman -- heap overflow

2022-11-0200:00:00
vuxml.freebsd.org
13
pixman
heap overflow
integer overflow
out-of-bounds write
unix

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.003

Percentile

71.9%

Pixman reports: for release 0.42.2

Avoid integer overflow leading to out-of-bounds write

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchpixman< 0.42.2UNKNOWN

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.003

Percentile

71.9%