ELA-60-1 pixman security update

numerical overflow in pointer arithmetic

2018-11-22
Packagepixman
Version0.26.0-4+deb7u3
Related CVEs CVE-2018-5297


An integer overflow issue has been reported in pixman prior to version 0.32.8. An attacker could cause an application using pixman to crash or, potentially, execute arbitrary code.



For Debian 7 Wheezy, these problems have been fixed in version 0.26.0-4+deb7u3.

We recommend that you upgrade your pixman packages.

Further information about Extended LTS security advisories can be found in the dedicated section of our website.