CVE-2023-37769
- EPSS 0.03%
- Published 17.07.2023 20:15:13
- Last modified 21.11.2024 08:12:14
stress-test master commit e4c878 was discovered to contain a FPE vulnerability via the component combine_inner at /pixman-combine-float.c.
CVE-2022-44638
- EPSS 0.29%
- Published 03.11.2022 06:15:10
- Last modified 02.05.2025 20:15:19
In libpixman in Pixman before 0.42.2, there is an out-of-bounds write (aka heap-based buffer overflow) in rasterize_edges_8 due to an integer overflow in pixman_sample_floor_y.
CVE-2015-5297
- EPSS 0.39%
- Published 31.07.2019 23:15:10
- Last modified 21.11.2024 02:32:44
An integer overflow issue has been reported in the general_composite_rect() function in pixman prior to version 0.32.8. An attacker could exploit this issue to cause an application using pixman to crash or, potentially, execute arbitrary code.
CVE-2014-9766
- EPSS 14.14%
- Published 13.04.2016 14:59:01
- Last modified 12.04.2025 10:46:40
Integer overflow in the create_bits function in pixman-bits-image.c in Pixman before 0.32.6 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via large height and stride values.
- EPSS 3%
- Published 18.01.2014 19:55:07
- Last modified 11.04.2025 00:51:21
Integer underflow in the pixman_trapezoid_valid macro in pixman.h in Pixman before 0.32.0, as used in X.Org server and cairo, allows context-dependent attackers to cause a denial of service (crash) via a negative bottom value.
- EPSS 5.57%
- Published 18.01.2014 19:55:02
- Last modified 11.04.2025 00:51:21
Integer underflow in the xTrapezoidValid macro in render/picture.h in X.Org allows context-dependent attackers to cause a denial of service (crash) via a negative bottom value.