Further uninitialized memory use during GIF rendering

2014-10-14T00:00:00
ID MFSA2014-78
Type mozilla
Reporter Mozilla Foundation
Modified 2014-10-14T00:00:00

Description

Google security researcher Michal Zalewski reported that when a malformed GIF image is repeatedly rendered within a <canvas> element, memory may not always be properly initialized. The resulting series of images then uses this uninitialized memory during rendering, allowing data to potentially leak to web content.