In the Angle graphics library, depth pitch computations did not take into account the block size and simply multiplied the row pitch with the pixel height. This caused the load functions to use a very high depth pitch, reading past the end of the user-supplied buffer.
Acknowledgments: Name: the Mozilla project Upstream: Abraruddin Khan, Omair, Trend Micro Zero Day Initiative
Statement: This vulnerability only affected Firefox on the Windows operating system. Firefox on Red Hat Enterprise Linux is not affected.