Back to search
CVE-2012-4513
Published: Nov 11, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
khtml/imload/scaledimageplane.h in Konqueror in KDE 4.7.3 allows remote attackers to cause a denial of service (crash) and possibly read memory via large canvas dimensions, which leads to an unexpected sign extension and a heap-based buffer over-read.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
51145
third-party-advisory
x_refsource_SECUNIA
RHSA-2012:1418
vendor-advisory
x_refsource_REDHAT
RHSA-2012:1416
vendor-advisory
x_refsource_REDHAT
1027709
vdb-entry
x_refsource_SECTRACK
http://www.nth-dimension.org.uk/pub/NDSA20121010.txt.asc
x_refsource_MISC
[oss-security] 20121011 Re: Pre-advisory for Konqueror 4.7.3 (other versions may be affected)
mailing-list
x_refsource_MLIST
20121030 Medium risk security flaws in Konqueror
mailing-list
x_refsource_BUGTRAQ
[oss-security] 20121030 Medium risk security flaws in Konqueror
mailing-list
x_refsource_MLIST
51097
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now