CVE-2018-12293 – The getImageData function in the ImageBufferCairo class in WebCore/platform/graphics/cairo …

0

Vuln ID: CVE-2018-12293

Published:  2018-06-19  21:29:00Z

Description: The getImageData function in the ImageBufferCairo class in WebCore/platform/graphics/cairo/ImageBufferCairo.cpp in WebKit, as used in WebKitGTK+ prior to version 2.20.3 and WPE WebKit prior to version 2.20.1, is vulnerable to a heap-based buffer overflow triggered by an integer overflow, which could be abused by crafted HTML content.

Source: NVD.NIST.GOV