CVE-2013-6425

Published: 18 January 2014

Integer underflow in the pixman_trapezoid_valid macro in pixman.h in Pixman before 0.32.0, as used in X.Org server and cairo, allows context-dependent attackers to cause a denial of service (crash) via a negative bottom value.

Priority

Medium

Status

Package Release Status
pixman
Launchpad, Ubuntu, Debian
Upstream
Released (0.30.2-2)
Ubuntu 14.04 ESM (Trusty Tahr) Not vulnerable
(0.30.2-2)
Patches:
upstream: 5e14da97f16e421d084a9e735be21b1025150f0c (fix)
upstream: 2f876cf86718d3dd9b3b04ae9552530edafe58a1 (test case)