Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Integer signedness error in the pixman_fill_sse2 function in pixman-sse2.c in Pixman, as distributed with Cairo and used in Mozilla Firefox before 20.0, Firefox ESR 17.x before 17.0.5, Thunderbird before 17.0.5, Thunderbird ESR 17.x before 17.0.5, SeaMonkey before 2.17, and other products, allows remote attackers to execute arbitrary code via crafted values that trigger attempted use of a (1) negative box boundary or (2) negative box size, leading to an out-of-bounds write operation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cario ‘pixman_fill_sse2’函数安全漏洞
Vulnerability Description
Cario中的Pixman存在整数符号错误漏洞,该漏洞存在于pixman-sse2.c的pixman_fill_sse2函数中。在调用Cario进行图形渲染时,通过特殊构造的参数,可以导致Cario使用负数作为方形的边界值或大小,从而导致越界写操作,进而可以导致任意代码执行。Cario是一个支持多种输出设备的2D绘图函数库,Firefox、SeaMonkey、Thunderbird等应用使用了Cario库。Mozilla Firefox、SeaMonkey和Thunderbird都是由美国Mozilla基
CVSS Information
N/A
Vulnerability Type
N/A