2 matches found
OSV-2023-1033 Heap-buffer-overflow in Gfx::InputStreamer::read_u32
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=63357 Crash type: Heap-buffer-overflow READ 1 Crash state: Gfx::InputStreamer::readu32 Gfx::setdibbitmasks Gfx::decodebmpdib...
UBUNTU-CVE-2014-1523
Heap-based buffer overflow in the readu32 function in Mozilla Firefox before 29.0, Firefox ESR 24.x before 24.5, Thunderbird before 24.5, and SeaMonkey before 2.26 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted JPEG image...