Integer overflow in the create_bits function in pixman-bits-image.c in Pixman before 0.32.6 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via large height and stride values.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Pixman | Pixman | * | 0.32.5 |