Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensions, a different vulnerability than CVE-2015-6792.
http://googlechromereleases.blogspot.com/2015/12/stable-channel-update_15.html
https://code.google.com/p/chromium/issues/detail?id=565023
https://code.google.com/p/chromium/issues/detail?id=569486
https://codereview.chromium.org/1498903003