Your submission was sent successfully! Close

You have successfully unsubscribed! Close

CVE-2022-44638

Published: 3 November 2022

In libpixman in Pixman before 0.42.2, there is an out-of-bounds write (aka heap-based buffer overflow) in rasterize_edges_8 due to an integer overflow in pixman_sample_floor_y.

Priority

Medium

CVSS 3 base score: 8.8

Status

Package Release Status
pixman
Launchpad, Ubuntu, Debian
bionic
Released (0.34.0-2ubuntu0.1)
focal
Released (0.38.4-0ubuntu2.1)
jammy
Released (0.40.0-1ubuntu0.22.04.1)
kinetic
Released (0.40.0-1ubuntu0.22.10.1)
trusty
Released (0.30.2-2ubuntu1.2+esm1)
upstream
Released (0.42.2)
xenial
Released (0.33.6-1ubuntu0.1~esm1)
Patches:
upstream: https://gitlab.freedesktop.org/pixman/pixman/-/commit/a1f88e842e0216a5b4df1ab023caebe33c101395