An out-of-bounds read while processing SVG content in <code>ConvolvePixel</code>. This results in a crash and also allows for otherwise inaccessible memory being copied into SVG graphic content, which could then displayed. External Reference: https://www.mozilla.org/en-US/security/advisories/mfsa2017-11/#CVE-2017-5465 Acknowledgements: Name: the Mozilla project Upstream: Ivan Fratric (Google Project Zero)
This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Via RHSA-2017:1104 https://access.redhat.com/errata/RHSA-2017:1104
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2017:1106 https://access.redhat.com/errata/RHSA-2017:1106
This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Red Hat Enterprise Linux 7 Via RHSA-2017:1201 https://access.redhat.com/errata/RHSA-2017:1201