Download
| Alert*
|
oval:org.secpod.oval:def:68918
The host is missing a high severity security update according to the Mozilla advisory MFSA2021-06 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle depth pitch computations in the Angle graphics library. Successful exploitation allo ... oval:org.secpod.oval:def:81315 In the Angle graphics library, depth pitch computations did not take into account the block size and simply multiplied the row pitch with the pixel height. This caused the load functions to use a very high depth pitch, reading past the end of the user-supplied buffer. |
