Mozilla Firefox: Memory disclosure in ConvolvePixel(CVE-2017-5465)

Mozilla bug tracker link: https://bugzilla.mozilla.org/showbug.cgi?id=1347617 There is an out of bound read leading to memory disclosure in Firefox. The vulnerability was confirmed on the nightly ASan build. PoC: Preliminary analysis: The problem seems to be the negative krenel unit length. This...