mingw-pixman-0.42.2-3.el9

エラータID: AXSA:2024-7929:01

Release date: 
Thursday, May 30, 2024 - 13:33
Subject: 
mingw-pixman-0.42.2-3.el9
Affected Channels: 
MIRACLE LINUX 9 for x86_64
Severity: 
Moderate
Description: 

Pixman is a pixel manipulation library for the X Window System and Cairo.

Security Fix(es):

* pixman: Integer overflow in pixman_sample_floor_y leading to heap out-of-bounds write (CVE-2022-44638)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the MIRACLE LINUX 9.4 Release Notes linked from the References section.

CVE-2022-44638
In libpixman in Pixman before 0.42.2, there is an out-of-bounds write (aka heap-based buffer overflow) in rasterize_edges_8 due to an integer overflow in pixman_sample_floor_y.

Solution: 

Update packages.

CVEs: 
CVE-2022-44638
In libpixman in Pixman before 0.42.2, there is an out-of-bounds write (aka heap-based buffer overflow) in rasterize_edges_8 due to an integer overflow in pixman_sample_floor_y.
Additional Info: 

N/A

Download: 

SRPMS
  1. mingw-pixman-0.42.2-3.el9.src.rpm
    MD5: 992c913b5ce39ef5e0a1654d1e46559e
    SHA-256: 8c0b12df6256cd9fc1bfc6d68259c5145e894452d881076c7b4d8f1679824106
    Size: 946.77 kB

Asianux Server 9 for x86_64
  1. mingw32-pixman-0.42.2-3.el9.noarch.rpm
    MD5: de3df482d1cea65985641b7c9fffa40f
    SHA-256: 7db817a0c0e733172dbcaf6702fd5030d4e41690c9bf4aafd2b116b4ce176dd2
    Size: 296.06 kB
  2. mingw64-pixman-0.42.2-3.el9.noarch.rpm
    MD5: 20b14ff4aaa4d2cacc823b035b512741
    SHA-256: 95e0abb8314bc4f185a3fabdad7dff789895ea559ba15e6bd8a9df7b971a0637
    Size: 297.40 kB