609 - Adobe Flash: Heap Overflow in BitmapData.drawWithQuality - project-zero

Starred by 1 user

Status:	Fixed
Owner:	natashenka@google.com
Closed:	Feb 2016
Cc:	project-...@google.com
Finder-natashenka Deadline-90 Id-4266 CVE-2016-0964 Reported-2015-Nov-3 CCProjectZeroMembers Product-Flash Severity-High Vendor-Adobe Finder-mjurczyk

Adobe Flash: Heap Overflow in BitmapData.drawWithQuality

Project Member Reported by natashenka@google.com, Nov 3 2015

Back to list

The attached fuzz test case causes a crash due to a heap overflow in BitmapData.drawWithQuality.

This bug is subject to a 90 day disclosure deadline. If 90 days elapse
without a broadly available patch, then the bug report will automatically
become visible to the public.

signal_sigsegv_555555803fb0_2076_36caed1995edbbf4ca1ae735c72f72f8.swf
4.5 MB Download

Project Member Comment 1 by natashenka@google.com, Nov 4 2015

Labels: Id-4266

This is PSIRT-4266

Project Member Comment 2 by natashenka@google.com, Feb 17 2016

Labels: -Restrict-View-Commit Finder-natashenka CVE-2016-0964
Status: Fixed

Fixed in Feb 9 bulletin

► Sign in to add a comment