Vulnerability Description
Integer signedness error in the pixman_fill_sse2 function in pixman-sse2.c in Pixman, as distributed with Cairo and used in Mozilla Firefox before 20.0, Firefox ESR 17.x before 17.0.5, Thunderbird before 17.0.5, Thunderbird ESR 17.x before 17.0.5, SeaMonkey before 2.17, and other products, allows remote attackers to execute arbitrary code via crafted values that trigger attempted use of a (1) negative box boundary or (2) negative box size, leading to an out-of-bounds write operation.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mozilla | Firefox | < 20.0 |
| Mozilla | Seamonkey | < 2.17 |
| Mozilla | Thunderbird | < 17.0.5 |
| Mozilla | Thunderbird Esr | >= 17.0, < 17.0.5 |
| Debian | Debian Linux | 7.0 |
| Canonical | Ubuntu Linux | 10.04 |
| Opensuse | Opensuse | 11.4 |
| Suse | Linux Enterprise Desktop | 10 |
| Suse | Linux Enterprise Server | 10 |
| Suse | Linux Enterprise Software Development Kit | 10 |
References
- http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00009.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00010.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00013.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00019.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-updates/2013-06/msg00012.htmlMailing ListThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2013-0696.htmlBroken Link
- http://rhn.redhat.com/errata/RHSA-2013-0697.htmlBroken Link
- http://www.debian.org/security/2013/dsa-2699Third Party Advisory
- http://www.mozilla.org/security/announce/2013/mfsa2013-31.htmlVendor Advisory
- http://www.ubuntu.com/usn/USN-1791-1Third Party Advisory
- https://bugzilla.mozilla.org/show_bug.cgi?id=825721Issue TrackingPatchVendor Advisory
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00009.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00010.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00013.htmlMailing ListThird Party Advisory
FAQ
What is CVE-2013-0800?
CVE-2013-0800 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Integer signedness error in the pixman_fill_sse2 function in pixman-sse2.c in Pixman, as distributed with Cairo and used in Mozilla Firefox before 20.0, Firefox ESR 17.x before 17.0.5, Thunderbird bef...
How severe is CVE-2013-0800?
CVE-2013-0800 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-0800?
Check the references section above for vendor advisories and patch information. Affected products include: Mozilla Firefox, Mozilla Seamonkey, Mozilla Thunderbird, Mozilla Thunderbird Esr, Debian Debian Linux.