Re: [SECURITY] [DSA 3525-1] pixman security update

[jack <jack@jackpot.uk.net>]

Splendid! Where did you go? Who is "Everyone"?

Who are you, for that matter?

And what does your tremendous time have to do with Salvatore's notice?

On 22/03/2016 16:15, Scott Murphy wrote:
> Yes was a good trip.  Everyone is OK.  Thanks.  We had a tremendous time.
> 
> On Mar 22, 2016 12:52 PM, "Salvatore Bonaccorso" <carnil@debian.org
> <mailto:carnil@debian.org>> wrote:
> 
> -
> -------------------------------------------------------------------------
> Debian Security Advisory DSA-3525-1                 
>  security@debian.org <mailto:security@debian.org>
> https://www.debian.org/security/                     Salvatore
> Bonaccorso
> March 22, 2016                       
> https://www.debian.org/security/faq
> -
> -------------------------------------------------------------------------
> 
> Package        : pixman
> CVE ID         : CVE-2014-9766
> 
> Vincent LE GARREC discovered an integer overflow in pixman, a
> pixel-manipulation library for X and cairo. A remote attacker can
> exploit this flaw to cause an application using the pixman library to
> crash, or potentially, to execute arbitrary code with the privileges of
> the user running the application.
> 
> For the oldstable distribution (wheezy), this problem has been fixed
> in version 0.26.0-4+deb7u2.
> 
> For the stable distribution (jessie), the testing distribution (stretch)
> and the unstable distribution (sid), this problem was already fixed in
> version 0.32.6-1.
> 
> We recommend that you upgrade your pixman packages.
> 
> Further information about Debian Security Advisories, how to apply
> these updates to your system and frequently asked questions can be
> found at: https://www.debian.org/security/
> 
> Mailing list: debian-security-announce@lists.debian.org
> <mailto:debian-security-announce@lists.debian.org>
>