#17262 closed enhancement (fixed)


Reported by: Douglas R. Reno Owned by: Douglas R. Reno
Priority: elevated Milestone: 11.3
Component: BOOK Version: git
Severity: normal Keywords:


New point version, is security related:

A new pixman release 0.42.2 is now available. This is a stable release
in the 0.42 series.

This version contains a fix for a heap overflow. A CVE has been
requested, and I'll reply to this email with the number when it is

See https://gitlab.freedesktop.org/pixman/pixman/-/commit/a1f88e842e0216a5b4df1ab023caebe33c101395
and https://gitlab.freedesktop.org/pixman/pixman/-/issues/63 for more information.

Thanks to Maddie Stone and Google's Project Zero for discovering this
issue, providing a proof-of-concept, and a great analysis.

Change History (5)

comment:1 by ken@…, 11 months ago

Summary: pixman-0.42.4pixman-0.42.2

typo in version in summary

comment:2 by Douglas R. Reno, 11 months ago

CVE is CVE-2022-44638

comment:3 by Douglas R. Reno, 11 months ago

Owner: changed from blfs-book to Douglas R. Reno
Status: newassigned

comment:5 by Douglas R. Reno, 11 months ago

Resolution: fixed
Status: assignedclosed

Filed SA-11.2-037

Note: See TracTickets for help on using tickets.