pixman-0.40.0-6.el9_3

エラータID: AXSA:2023-7051:01

Release date: 
Thursday, December 21, 2023 - 04:46
Subject: 
pixman-0.40.0-6.el9_3
Affected Channels: 
MIRACLE LINUX 9 for x86_64
Severity: 
Moderate
Description: 

Pixman is a pixel manipulation library for the X Window System and Cairo.

Security Fix(es):

* pixman: Integer overflow in pixman_sample_floor_y leading to heap out-of-bounds write (CVE-2022-44638)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2022-44638
In libpixman in Pixman before 0.42.2, there is an out-of-bounds write (aka heap-based buffer overflow) in rasterize_edges_8 due to an integer overflow in pixman_sample_floor_y.

Solution: 

Update packages.

CVEs: 
CVE-2022-44638
In libpixman in Pixman before 0.42.2, there is an out-of-bounds write (aka heap-based buffer overflow) in rasterize_edges_8 due to an integer overflow in pixman_sample_floor_y.
Additional Info: 

N/A

Download: 

SRPMS
  1. pixman-0.40.0-6.el9_3.src.rpm
    MD5: 21278a7b5eba17ce909f54b041779e76
    SHA-256: f2d06450743db1b6c24fa5b848a11cb67f1ae9fbf795a5cc4492e69cc61a9032
    Size: 630.47 kB

Asianux Server 9 for x86_64
  1. pixman-0.40.0-6.el9_3.i686.rpm
    MD5: 5a1db425fddcaf837db115aa5db6df6a
    SHA-256: fe6b1ade3c9d15c3fba759286f73f6bb853a62ffe1a560ad5222ab33768f4f0e
    Size: 281.55 kB
  2. pixman-0.40.0-6.el9_3.x86_64.rpm
    MD5: 65421e119dbe13f8562b3bbef3ef1bdc
    SHA-256: acb4011b9610fd73f0efb3b4d9a355c14c1fd88f490fa3f669e56bbaba3dae67
    Size: 268.81 kB
  3. pixman-devel-0.40.0-6.el9_3.i686.rpm
    MD5: 077358f3d9a1e25f73caa5a1cd36d8ef
    SHA-256: e465058cd42b020e1e48d54f9dd3090803ca5edcb0ee6a5f818f928be0b10590
    Size: 16.20 kB
  4. pixman-devel-0.40.0-6.el9_3.x86_64.rpm
    MD5: faa0b22c736be1687becd8cd7d73cbca
    SHA-256: 59d5317266b6f21af0b7fb4e66304f12fa5dc2683e3f70d53390cd8977668ff1
    Size: 16.18 kB