Alerts This Week
Warning Icon 1 664
Alerts This Week
Warning Icon 1 664

Ubuntu 14.04 & 12.04 LTS: USN-2918-1 Critical: Pixman Integer Underflow

Calendar Mar 03, 2016 User Avatar LinuxSecurity Advisories
1 - 2 min read
Ubuntu Large Esm H500
Topics%20covered

Topics Covered

security advisory update critical DoS Ubuntu integer underflow pixman
pixman could be made to crash or run programs as your login if it processed specially crafted data. 
=========================================================================Ubuntu Security Notice USN-2918-1
March 03, 2016

pixman vulnerability
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 14.04 LTS
- Ubuntu 12.04 LTS

Summary:

pixman could be made to crash or run programs as your login if it processed
specially crafted data.

Software Description:
- pixman: pixel-manipulation library for X and cairo

Details:

Vincent LE GARREC discovered an integer underflow in pixman. If a user were
tricked into opening a specially crafted file, a remote attacker could
cause pixman to crash, resulting in a denial of service, or possibly
execute arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.04 LTS:
  libpixman-1-0                   0.30.2-2ubuntu1.1

Ubuntu 12.04 LTS:
  libpixman-1-0                   0.30.2-1ubuntu0.0.0.0.3

After a standard system update you need to restart your session to make
all the necessary changes.

References:
  https://ubuntu.com/security/notices/USN-2918-1
  CVE-2014-9766

Package Information:
  https://launchpad.net/ubuntu/+source/pixman/0.30.2-2ubuntu1.1
  https://launchpad.net/ubuntu/+source/pixman/0.30.2-1ubuntu0.0.0.0.3

Ubuntu 14.04 & 12.04 LTS: USN-2918-1 Critical: Pixman Integer Underflow

ubuntu
Calendar Grey March 3, 2016
Dist Ubuntu Esm H88
Recent reports highlight the pixman vulnerability in Ubuntu 14.04 and 12.04 LTS. To improve your security, routinely update packages and check for patches.
pixman could be made to crash or run programs as your login if it processed specially crafted data.

Summary

Topics%20covered

Topics Covered

security advisory update critical DoS Ubuntu integer underflow pixman

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 LTS: libpixman-1-0 0.30.2-2ubuntu1.1 Ubuntu 12.04 LTS: libpixman-1-0 0.30.2-1ubuntu0.0.0.0.3 After a standard system update you need to restart your session to make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-2918-1

CVE-2014-9766

Severity
critical
Lowest
Low
Medium
High
Critical

March 03, 2016

Topics%20covered

Topics Covered

security advisory update critical DoS Ubuntu integer underflow pixman

Package Information

https://launchpad.net/ubuntu/+source/pixman/0.30.2-2ubuntu1.1 https://launchpad.net/ubuntu/+source/pixman/0.30.2-1ubuntu0.0.0.0.3

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here