A buffer overflow in Pixman might allow remote attackers to execute arbitrary code.
|Package||x11-libs/pixman on all architectures|
|Affected versions||< 0.32.8|
|Unaffected versions||>= 0.32.8|
Pixman is a pixel manipulation library.
In pixman-general, careless computations done with the ‘dest_buffer’ pointer may overflow, failing the buffer upper limit check.
A remote attacker could possibly cause a Denial of Service condition, or execute arbitrary code with the privileges of the process.
There is no known workaround at this time.
All Pixman users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=x11-libs/pixman-0.32.8"
December 13, 2016
December 13, 2016: 2