Security Information / 2013 / Security Information -- DSA-2823-1 pixman

Debian Security Advisory

DSA-2823-1 pixman -- integer underflow

Date Reported:

18 Dec 2013

Affected Packages:

pixman

Vulnerable:

Yes

Security database references:

In Mitre's CVE dictionary: CVE-2013-6425.

More information:

Bryan Quigley discovered an integer underflow in Pixman which could lead to denial of service or the execution of arbitrary code.

For the oldstable distribution (squeeze), this problem has been fixed in version 0.16.4-1+deb6u1.

For the stable distribution (wheezy), this problem has been fixed in version 0.26.0-4+deb7u1.

For the unstable distribution (sid), this problem has been fixed in version 0.30.2-2.

We recommend that you upgrade your pixman packages.