ALAS-2014-272 ---- pixmanID: oval:org.secpod.oval:def:1600090 | Date: (C)2016-01-05 (M)2023-02-20 |
Class: PATCH | Family: unix |
An integer overflow, which led to a heap-based buffer overflow, was found in the way pixman handled trapezoids. If a remote attacker could trick an application using pixman into rendering a trapezoid shape with specially crafted coordinates, it could cause the application to crash or, possibly, execute arbitrary code with the privileges of the user running the application
Platform: |
Amazon Linux AMI |