Bug#700308: src:pixman: CVE-2013-1591

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#700308: src:pixman: CVE-2013-1591
From: Helmut Grohne <helmut@subdivi.de>
Date: Mon, 11 Feb 2013 14:40:21 +0100
Message-id: <[🔎] 20130211134015.GA9630@alf.mars>
Mail-followup-to: Helmut Grohne <helmut@subdivi.de>, Debian Bug Tracking System <submit@bugs.debian.org>
Reply-to: Helmut Grohne <helmut@subdivi.de>, 700308@bugs.debian.org

Package: src:pixman
Severity: grave
Tags: security

The pixman library may be affected by CVE-2013-1591.

| Stack-based buffer overflow in libpixman, as used in Pale Moon before
| 15.4, has unspecified impact and attack vectors.

The only references I could find so far were:

http://www.palemoon.org/releasenotes-ng.shtml
http://people.canonical.com/~ubuntu-security/cve/2013/CVE-2013-1591.html

Please investigate which pixman versions (if any) are affected by this
issue and update version information for this bug report.

Helmut

Reply to:

Follow-Ups:
- Bug#700308: src:pixman: CVE-2013-1591
  - From: Julien Cristau <julien.cristau@logilab.fr>
- Bug#700308: marked as done (src:pixman: CVE-2013-1591)
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

Prev by Date: xorg-server: Changes to 'ubuntu'
Next by Date: xserver-xorg-video-intel: Changes to 'ubuntu'
Previous by thread: xorg-server: Changes to 'ubuntu'
Next by thread: Bug#700308: src:pixman: CVE-2013-1591
Index(es):
- Date
- Thread