CVE-2022-44638

Опубликовано: 03 нояб. 2022

Источник: redhat

CVSS3: 7

Описание

In libpixman in Pixman before 0.42.2, there is an out-of-bounds write (aka heap-based buffer overflow) in rasterize_edges_8 due to an integer overflow in pixman_sample_floor_y.

A flaw was found in pixman. This issue causes an out-of-bounds write in rasterize_edges_8 due to an integer overflow in pixman_sample_floor_y. This can result in data corruption, a crash, or code execution.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 7	pixman	Out of support scope
Red Hat Enterprise Linux 8	pixman	Fixed	RHSA-2024:0131	10.01.2024
Red Hat Enterprise Linux 8.6 Extended Update Support	pixman	Fixed	RHSA-2023:7403	21.11.2023
Red Hat Enterprise Linux 8.8 Extended Update Support	pixman	Fixed	RHSA-2023:7531	28.11.2023
Red Hat Enterprise Linux 9	pixman	Fixed	RHSA-2023:7754	12.12.2023
Red Hat Enterprise Linux 9	mingw-pixman	Fixed	RHSA-2024:2525	30.04.2024
Red Hat Enterprise Linux 9.0 Extended Update Support	pixman	Fixed	RHSA-2023:7386	21.11.2023
Red Hat Enterprise Linux 9.2 Extended Update Support	pixman	Fixed	RHSA-2023:7375	21.11.2023

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-190->CWE-787

https://bugzilla.redhat.com/show_bug.cgi?id=2139988pixman: Integer overflow in pixman_sample_floor_y leading to heap out-of-bounds write

7 High

CVSS3

Связанные уязвимости

CVE-2022-44638

CVSS3: 8.8

ubuntu

больше 2 лет назад

In libpixman in Pixman before 0.42.2, there is an out-of-bounds write (aka heap-based buffer overflow) in rasterize_edges_8 due to an integer overflow in pixman_sample_floor_y.

CVE-2022-44638

CVSS3: 8.8

nvd

больше 2 лет назад

In libpixman in Pixman before 0.42.2, there is an out-of-bounds write (aka heap-based buffer overflow) in rasterize_edges_8 due to an integer overflow in pixman_sample_floor_y.