630 - Adobe Flash: Out-of-bounds image read - project-zero

Starred by 1 user

Status:	Fixed
Owner:	natashenka@google.com
Closed:	Feb 2016
Cc:	project-...@google.com
CVE-2016-0965 Reported-2015-Nov-16 Finder-natashenka Deadline-90 Finder-hawkes CCProjectZeroMembers Product-Flash Severity-High Vendor-Adobe Finder-mjurczyk

Adobe Flash: Out-of-bounds image read

Project Member Reported by natashenka@google.com, Nov 17 2015

Back to list

The attached file can cause an out-of-bounds read of an image. While the bits of the image are null, the width, height and other values can make it a valid pointer. 


This bug is subject to a 90 day disclosure deadline. If 90 days elapse
without a broadly available patch, then the bug report will automatically
become visible to the public.

mystery6.swf
61.0 KB Download

Project Member Comment 1 by scvitti@google.com, Nov 29 2015

Labels: -Reported-2105-Nov-16 Reported-2015-Nov-16

Project Member Comment 2 by natashenka@google.com, Jan 8 2016

This is PSIRT-4306

Project Member Comment 3 by natashenka@google.com, Feb 17 2016

Labels: -Restrict-View-Commit CVE-2016-0965
Status: Fixed

Fixed in Feb update.

► Sign in to add a comment