Upstream information
Description
khtml/imload/scaledimageplane.h in Konqueror in KDE 4.7.3 allows remote attackers to cause a denial of service (crash) and possibly read memory via large canvas dimensions, which leads to an unexpected sign extension and a heap-based buffer over-read.NVD CVSS v2 Base Score: 6.4 (AV:N/AC:L/Au:N/C:P/I:N/A:P)
Novell/SUSE information
Novell Bugzilla entry: 787520 SUSE Security Advisories:- openSUSE-SU-2012:1581-1, published Wed, 28 Nov 2012 13:08:34 +0100 (CET)