Buffer Overflow in Canvas
Description
Security researcher miaubiz used the Address Sanitizer tool to discover a buffer overflow in Canvas when specific bad height and width values were given through HTML. This could lead to a potentially exploitable crash.
Affected Applications
Firefox
Firefox ESR