CVE-2014-9766 on Ubuntu 16.04 LTS (xenial) - medium.
Description:
Integer overflow in the create_bits function in pixman-bits-image.c in Pixman before 0.32.6 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via large height and stride values.