VDB
CVE-2013-1591
CVE-2013-1591
PUBLISHED
CVSS 10 CRITICAL
Stack-based buffer overflow in libpixman, as used in Pale Moon before 15.4 and possibly other products, has unspecified impact and context-dependent attack vectors. NOTE: this issue might be resultant from an integer overflow in the fast_composite_scaled_bilinear function in pixman-inlines.h, which triggers an infinite loop.
EPSS 1.39% · 80.7th percentile
Risk Scores
CVSS 2.0
10
EPSS Score
1.39%
80.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | * |
| redhat | enterprise_virtualization | 3.0 |
| redhat | enterprise_linux | 6.0 |
| palemoon | pale_moon | 0 |
Exploit Intelligence
- https://bugzilla.redhat.com/show_bug.cgi?id=910149 (nist-nvd)
- http://www.palemoon.org/releasenotes-ng.shtml (circl)
- https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0077 (circl)
- RHSA-2013:0687 (circl)
- RHSA-2013:0746 (circl)
- http://cgit.freedesktop.org/pixman/commit/?id=de60e2e0e3eb6084f8f14b63f25b3cbfb012943f (circl)
- MDVSA-2013:116 (circl)
- https://support.f5.com/csp/article/K51392553 (circl)
Timeline
- Jan 31, 2013 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 16, 2023 EPSS Score
- Sep 7, 2023 EPSS Score
References
- http://www.palemoon.org/releasenotes-ng.shtml url
- https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0077 url
- RHSA-2013:0687 vendor-advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=910149 url
- RHSA-2013:0746 vendor-advisory
- http://cgit.freedesktop.org/pixman/commit/?id=de60e2e0e3eb6084f8f14b63f25b3cbfb012943f url
- MDVSA-2013:116 vendor-advisory
- https://support.f5.com/csp/article/K51392553 url
- https://nvd.nist.gov/vuln/detail/CVE-2013-1591 advisory