Ubuntu Security Notice USN-2918-1
3rd March, 2016
pixman vulnerability
A security issue affects these releases of Ubuntu and its
derivatives:
- Ubuntu 14.04 LTS
- Ubuntu 12.04 LTS
Summary
pixman could be made to crash or run programs as your login if it processed
specially crafted data.
Software description
- pixman
– pixel-manipulation library for X and cairo
Details
Vincent LE GARREC discovered an integer underflow in pixman. If a user were
tricked into opening a specially crafted file, a remote attacker could
cause pixman to crash, resulting in a denial of service, or possibly
execute arbitrary code.
Update instructions
The problem can be corrected by updating your system to the following
package version:
- Ubuntu 14.04 LTS:
-
libpixman-1-0
0.30.2-2ubuntu1.1
- Ubuntu 12.04 LTS:
-
libpixman-1-0
0.30.2-1ubuntu0.0.0.0.3
To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.
After a standard system update you need to restart your session to make
all the necessary changes.