khtml/imload/scaledimageplane.h in Konqueror in KDE 4.7.3 allows remote
attackers to cause a denial of service (crash) and possibly read memory via
large canvas dimensions, which leads to an unexpected sign extension and a
heap-based buffer over-read.
Author | Note |
---|---|
jdstrand | only 4.7.3 reported as affected. Reported as fixed in later releases |