Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pixman pixman vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2023-37769
stress-test master commit e4c878 exists to contain a FPE vulnerability via the component combine_inner at /pixman-combine-float.c.
Pixman Pixman -
9.8
CVSSv3
CVE-2015-5297
An integer overflow issue has been reported in the general_composite_rect() function in pixman prior to version 0.32.8. An attacker could exploit this issue to cause an application using pixman to crash or, potentially, execute arbitrary code.
Pixman Pixman
9.8
CVSSv3
CVE-2014-9766
Integer overflow in the create_bits function in pixman-bits-image.c in Pixman prior to 0.32.6 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via large height and stride values.
Pixman Pixman
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
8.8
CVSSv3
CVE-2022-44638
In libpixman in Pixman prior to 0.42.2, there is an out-of-bounds write (aka heap-based buffer overflow) in rasterize_edges_8 due to an integer overflow in pixman_sample_floor_y.
Pixman Pixman
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Fedoraproject Fedora 37
9.8
CVSSv3
CVE-2013-1591
Stack-based buffer overflow in libpixman, as used in Pale Moon prior to 15.4 and possibly other products, has unspecified impact and context-dependent attack vectors. NOTE: this issue might be resultant from an integer overflow in the fast_composite_scaled_bilinear function in pi...
Redhat Enterprise Virtualization 3.0
Redhat Enterprise Linux 6.0
Palemoon Pale Moon
NA
CVE-2014-1528
The sse2_composite_src_x888_8888 function in Pixman, as used in Cairo in Mozilla Firefox 28.0 and SeaMonkey 2.25 on Windows, allows remote malicious users to execute arbitrary code or cause a denial of service (out-of-bounds write and application crash) by painting on a CANVAS el...
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 13.10
Canonical Ubuntu Linux 12.04
Opensuse Opensuse 13.1
Opensuse Project Opensuse 12.3
Oracle Solaris 11.3
Mozilla Firefox 28.0
Mozilla Seamonkey 2.25
Fedoraproject Fedora 19
7.8
CVSSv3
CVE-2020-35492
A flaw was found in cairo's image-compositor.c in all versions before 1.17.4. This flaw allows an attacker who can provide a crafted input file to cairo's image-compositor (for example, by convincing a user to open a file in an application using cairo, or if an applicat...
Cairographics Cairo
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started