Skip to navigation

Security Advisory Moderate: pixman security update

Advisory: RHSA-2013:0687-1
Type: Security Advisory
Severity: Moderate
Issued on: 2013-03-27
Last updated on: 2013-03-27
Affected Products: Red Hat Enterprise Linux Desktop (v. 6)
Red Hat Enterprise Linux HPC Node (v. 6)
Red Hat Enterprise Linux Server (v. 6)
Red Hat Enterprise Linux Server AUS (v. 6.4)
Red Hat Enterprise Linux Server EUS (v. 6.4.z)
Red Hat Enterprise Linux Workstation (v. 6)
CVEs (cve.mitre.org): CVE-2013-1591

Details

Updated pixman packages that fix one security issue are now available for
Red Hat Enterprise Linux 6.

The Red Hat Security Response Team has rated this update as having moderate
security impact. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available from the CVE link in
the References section.

Pixman is a pixel manipulation library for the X Window System and Cairo.

An integer overflow flaw was discovered in one of pixman's manipulation
routines. If a remote attacker could trick an application using pixman into
performing a certain manipulation, it could cause the application to crash
or, possibly, execute arbitrary code with the privileges of the user
running the application. (CVE-2013-1591)

Users are advised to upgrade to these updated packages, which contain
a backported patch to correct this issue. All applications using
pixman must be restarted for this update to take effect.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258

Updated packages

Red Hat Enterprise Linux Desktop (v. 6)

SRPMS:
pixman-0.26.2-5.el6_4.src.rpm
File outdated by:  RHSA-2013:1869
    MD5: 4f4c572ad440b10357487c008be12e0e
SHA-256: 4a10b1904f644b1362695fa352b54b4ad28e7252cf32b0e3789d88070fced922
 
IA-32:
pixman-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: eee9bc890916605a43b60259fada1477
SHA-256: d4673d39de4110cc749882f51376b3f56086d945bcc1edcbbe1257cf1f261132
pixman-debuginfo-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: f2ea6294c726599392f821ac975df512
SHA-256: 1a76a8100ec179d2bd63c0cdb01d9464038a8c486d6689f4bb6933f41739e66b
pixman-devel-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: b7b51a7b1ed35c61e2fe99ca36d3786b
SHA-256: dba4a9845d0d9ae241ee963beaaddf04c114f3a9d52a56cf299a761c20d66c72
 
x86_64:
pixman-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: eee9bc890916605a43b60259fada1477
SHA-256: d4673d39de4110cc749882f51376b3f56086d945bcc1edcbbe1257cf1f261132
pixman-0.26.2-5.el6_4.x86_64.rpm
File outdated by:  RHSA-2013:1869
    MD5: 5489adab1ad33a0e8a240cc90a824f62
SHA-256: 0df505fd41650ed625117300b62a2700438684f0e1b1eb2e78fd7470f2652ff8
pixman-debuginfo-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: f2ea6294c726599392f821ac975df512
SHA-256: 1a76a8100ec179d2bd63c0cdb01d9464038a8c486d6689f4bb6933f41739e66b
pixman-debuginfo-0.26.2-5.el6_4.x86_64.rpm
File outdated by:  RHSA-2013:1869
    MD5: 79ca80d50d9fce6b3a54d8767e8d7a73
SHA-256: 72a5532e34d1895bb5bf7ebb46ca76592001d6586d2699f24e029d81b39adb9e
pixman-devel-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: b7b51a7b1ed35c61e2fe99ca36d3786b
SHA-256: dba4a9845d0d9ae241ee963beaaddf04c114f3a9d52a56cf299a761c20d66c72
pixman-devel-0.26.2-5.el6_4.x86_64.rpm
File outdated by:  RHSA-2013:1869
    MD5: 0385020d2f8b969671b58692436a577b
SHA-256: ca527c5d531a8e82fba001bf8bab039548c01c90eccd270e654e83f98119d423
 
Red Hat Enterprise Linux HPC Node (v. 6)

SRPMS:
pixman-0.26.2-5.el6_4.src.rpm
File outdated by:  RHSA-2013:1869
    MD5: 4f4c572ad440b10357487c008be12e0e
SHA-256: 4a10b1904f644b1362695fa352b54b4ad28e7252cf32b0e3789d88070fced922
 
x86_64:
pixman-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: eee9bc890916605a43b60259fada1477
SHA-256: d4673d39de4110cc749882f51376b3f56086d945bcc1edcbbe1257cf1f261132
pixman-0.26.2-5.el6_4.x86_64.rpm
File outdated by:  RHSA-2013:1869
    MD5: 5489adab1ad33a0e8a240cc90a824f62
SHA-256: 0df505fd41650ed625117300b62a2700438684f0e1b1eb2e78fd7470f2652ff8
pixman-debuginfo-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: f2ea6294c726599392f821ac975df512
SHA-256: 1a76a8100ec179d2bd63c0cdb01d9464038a8c486d6689f4bb6933f41739e66b
pixman-debuginfo-0.26.2-5.el6_4.x86_64.rpm
File outdated by:  RHSA-2013:1869
    MD5: 79ca80d50d9fce6b3a54d8767e8d7a73
SHA-256: 72a5532e34d1895bb5bf7ebb46ca76592001d6586d2699f24e029d81b39adb9e
pixman-devel-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: b7b51a7b1ed35c61e2fe99ca36d3786b
SHA-256: dba4a9845d0d9ae241ee963beaaddf04c114f3a9d52a56cf299a761c20d66c72
pixman-devel-0.26.2-5.el6_4.x86_64.rpm
File outdated by:  RHSA-2013:1869
    MD5: 0385020d2f8b969671b58692436a577b
SHA-256: ca527c5d531a8e82fba001bf8bab039548c01c90eccd270e654e83f98119d423
 
Red Hat Enterprise Linux Server (v. 6)

SRPMS:
pixman-0.26.2-5.el6_4.src.rpm
File outdated by:  RHSA-2013:1869
    MD5: 4f4c572ad440b10357487c008be12e0e
SHA-256: 4a10b1904f644b1362695fa352b54b4ad28e7252cf32b0e3789d88070fced922
 
IA-32:
pixman-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: eee9bc890916605a43b60259fada1477
SHA-256: d4673d39de4110cc749882f51376b3f56086d945bcc1edcbbe1257cf1f261132
pixman-debuginfo-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: f2ea6294c726599392f821ac975df512
SHA-256: 1a76a8100ec179d2bd63c0cdb01d9464038a8c486d6689f4bb6933f41739e66b
pixman-devel-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: b7b51a7b1ed35c61e2fe99ca36d3786b
SHA-256: dba4a9845d0d9ae241ee963beaaddf04c114f3a9d52a56cf299a761c20d66c72
 
PPC:
pixman-0.26.2-5.el6_4.ppc.rpm
File outdated by:  RHSA-2013:1869
    MD5: 53cd8ab9b9a54b0d9065345977b2c5b4
SHA-256: 4be9c56a3d945047001e423535d6d9217f5510282dc3e5bbed2b95f60b2bbfb9
pixman-0.26.2-5.el6_4.ppc64.rpm
File outdated by:  RHSA-2013:1869
    MD5: c15f1d5e6a97c36c9026b9f7992cb954
SHA-256: 786830a2c91a54fa7c7e1efc371ede9c6a11193cb6a7f62d654f9f6a7d792bf8
pixman-debuginfo-0.26.2-5.el6_4.ppc.rpm
File outdated by:  RHSA-2013:1869
    MD5: d74d076a15ee41916addcdd0c2b7eae1
SHA-256: 483f9e5fc28b24638068c5ca3ec56f7e05dc3ed4e0dc53de52f5c6f6fabf6ef5
pixman-debuginfo-0.26.2-5.el6_4.ppc64.rpm
File outdated by:  RHSA-2013:1869
    MD5: 9fbc949edfc7e0c41a73e6d1470c4cc4
SHA-256: 50ed3d7113e7f264b3967795b2a4f86ebac1762c347690ad078402b68d693fd5
pixman-devel-0.26.2-5.el6_4.ppc.rpm
File outdated by:  RHSA-2013:1869
    MD5: a6e0790f714a2d57bdbb249b4629e481
SHA-256: e4dc948839ff300b0bdd654f1557ba612c674cb1c3978cbc393c244cf8788e8d
pixman-devel-0.26.2-5.el6_4.ppc64.rpm
File outdated by:  RHSA-2013:1869
    MD5: 872d4d756e36e93c47e3eb20dbebb128
SHA-256: fbafb8e246d48da1b949ceca29ca4bfcba951433bde909a7ea2ef946f7d7c09f
 
s390x:
pixman-0.26.2-5.el6_4.s390.rpm
File outdated by:  RHSA-2013:1869
    MD5: e3397fac85f5dfa69eca0846fd3d82c0
SHA-256: f4b794a777b973936c3bcd8b1449977f512d823947ebc0532abb853e2876f802
pixman-0.26.2-5.el6_4.s390x.rpm
File outdated by:  RHSA-2013:1869
    MD5: e0cfb0fa39795f23cae66c8980e0e3e4
SHA-256: fa1686faff08ddd84ee95046296f3902197c43b4e4ac21facb8f9165912ca84e
pixman-debuginfo-0.26.2-5.el6_4.s390.rpm
File outdated by:  RHSA-2013:1869
    MD5: 083e4fc4c3bc9ad9f01ab9d1a5ed07f0
SHA-256: 393bdbd589cb683fcde05136c8ee54c51792819a2842afab46bc67b834db522b
pixman-debuginfo-0.26.2-5.el6_4.s390x.rpm
File outdated by:  RHSA-2013:1869
    MD5: 5659fe57b955277f763a8e379079769b
SHA-256: 643dfcb8d654006bd59f7b5750f45bccf6f548af67b0d660f2da4ddca9e732d6
pixman-devel-0.26.2-5.el6_4.s390.rpm
File outdated by:  RHSA-2013:1869
    MD5: da24cd63e32025776203e79232f2490c
SHA-256: e6a9479e8e756e0fd513d0ee41865b1d53e5116efebf137c9db05bc7659c2e34
pixman-devel-0.26.2-5.el6_4.s390x.rpm
File outdated by:  RHSA-2013:1869
    MD5: c6f4147e9936fac1999f689226e6d360
SHA-256: 2bffbc801af9c4c0826d64aeb0872ce38a9fe574d8df0b05e843c95359563447
 
x86_64:
pixman-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: eee9bc890916605a43b60259fada1477
SHA-256: d4673d39de4110cc749882f51376b3f56086d945bcc1edcbbe1257cf1f261132
pixman-0.26.2-5.el6_4.x86_64.rpm
File outdated by:  RHSA-2013:1869
    MD5: 5489adab1ad33a0e8a240cc90a824f62
SHA-256: 0df505fd41650ed625117300b62a2700438684f0e1b1eb2e78fd7470f2652ff8
pixman-debuginfo-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: f2ea6294c726599392f821ac975df512
SHA-256: 1a76a8100ec179d2bd63c0cdb01d9464038a8c486d6689f4bb6933f41739e66b
pixman-debuginfo-0.26.2-5.el6_4.x86_64.rpm
File outdated by:  RHSA-2013:1869
    MD5: 79ca80d50d9fce6b3a54d8767e8d7a73
SHA-256: 72a5532e34d1895bb5bf7ebb46ca76592001d6586d2699f24e029d81b39adb9e
pixman-devel-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: b7b51a7b1ed35c61e2fe99ca36d3786b
SHA-256: dba4a9845d0d9ae241ee963beaaddf04c114f3a9d52a56cf299a761c20d66c72
pixman-devel-0.26.2-5.el6_4.x86_64.rpm
File outdated by:  RHSA-2013:1869
    MD5: 0385020d2f8b969671b58692436a577b
SHA-256: ca527c5d531a8e82fba001bf8bab039548c01c90eccd270e654e83f98119d423
 
Red Hat Enterprise Linux Server AUS (v. 6.4)

SRPMS:
pixman-0.26.2-5.el6_4.src.rpm
File outdated by:  RHSA-2013:1869
    MD5: 4f4c572ad440b10357487c008be12e0e
SHA-256: 4a10b1904f644b1362695fa352b54b4ad28e7252cf32b0e3789d88070fced922
 
x86_64:
pixman-0.26.2-5.el6_4.i686.rpm     MD5: eee9bc890916605a43b60259fada1477
SHA-256: d4673d39de4110cc749882f51376b3f56086d945bcc1edcbbe1257cf1f261132
pixman-0.26.2-5.el6_4.x86_64.rpm     MD5: 5489adab1ad33a0e8a240cc90a824f62
SHA-256: 0df505fd41650ed625117300b62a2700438684f0e1b1eb2e78fd7470f2652ff8
pixman-debuginfo-0.26.2-5.el6_4.i686.rpm     MD5: f2ea6294c726599392f821ac975df512
SHA-256: 1a76a8100ec179d2bd63c0cdb01d9464038a8c486d6689f4bb6933f41739e66b
pixman-debuginfo-0.26.2-5.el6_4.x86_64.rpm     MD5: 79ca80d50d9fce6b3a54d8767e8d7a73
SHA-256: 72a5532e34d1895bb5bf7ebb46ca76592001d6586d2699f24e029d81b39adb9e
pixman-devel-0.26.2-5.el6_4.i686.rpm     MD5: b7b51a7b1ed35c61e2fe99ca36d3786b
SHA-256: dba4a9845d0d9ae241ee963beaaddf04c114f3a9d52a56cf299a761c20d66c72
pixman-devel-0.26.2-5.el6_4.x86_64.rpm     MD5: 0385020d2f8b969671b58692436a577b
SHA-256: ca527c5d531a8e82fba001bf8bab039548c01c90eccd270e654e83f98119d423
 
Red Hat Enterprise Linux Server EUS (v. 6.4.z)

SRPMS:
pixman-0.26.2-5.el6_4.src.rpm
File outdated by:  RHSA-2013:1869
    MD5: 4f4c572ad440b10357487c008be12e0e
SHA-256: 4a10b1904f644b1362695fa352b54b4ad28e7252cf32b0e3789d88070fced922
 
IA-32:
pixman-0.26.2-5.el6_4.i686.rpm     MD5: eee9bc890916605a43b60259fada1477
SHA-256: d4673d39de4110cc749882f51376b3f56086d945bcc1edcbbe1257cf1f261132
pixman-debuginfo-0.26.2-5.el6_4.i686.rpm     MD5: f2ea6294c726599392f821ac975df512
SHA-256: 1a76a8100ec179d2bd63c0cdb01d9464038a8c486d6689f4bb6933f41739e66b
pixman-devel-0.26.2-5.el6_4.i686.rpm     MD5: b7b51a7b1ed35c61e2fe99ca36d3786b
SHA-256: dba4a9845d0d9ae241ee963beaaddf04c114f3a9d52a56cf299a761c20d66c72
 
PPC:
pixman-0.26.2-5.el6_4.ppc.rpm     MD5: 53cd8ab9b9a54b0d9065345977b2c5b4
SHA-256: 4be9c56a3d945047001e423535d6d9217f5510282dc3e5bbed2b95f60b2bbfb9
pixman-0.26.2-5.el6_4.ppc64.rpm     MD5: c15f1d5e6a97c36c9026b9f7992cb954
SHA-256: 786830a2c91a54fa7c7e1efc371ede9c6a11193cb6a7f62d654f9f6a7d792bf8
pixman-debuginfo-0.26.2-5.el6_4.ppc.rpm     MD5: d74d076a15ee41916addcdd0c2b7eae1
SHA-256: 483f9e5fc28b24638068c5ca3ec56f7e05dc3ed4e0dc53de52f5c6f6fabf6ef5
pixman-debuginfo-0.26.2-5.el6_4.ppc64.rpm     MD5: 9fbc949edfc7e0c41a73e6d1470c4cc4
SHA-256: 50ed3d7113e7f264b3967795b2a4f86ebac1762c347690ad078402b68d693fd5
pixman-devel-0.26.2-5.el6_4.ppc.rpm     MD5: a6e0790f714a2d57bdbb249b4629e481
SHA-256: e4dc948839ff300b0bdd654f1557ba612c674cb1c3978cbc393c244cf8788e8d
pixman-devel-0.26.2-5.el6_4.ppc64.rpm     MD5: 872d4d756e36e93c47e3eb20dbebb128
SHA-256: fbafb8e246d48da1b949ceca29ca4bfcba951433bde909a7ea2ef946f7d7c09f
 
s390x:
pixman-0.26.2-5.el6_4.s390.rpm     MD5: e3397fac85f5dfa69eca0846fd3d82c0
SHA-256: f4b794a777b973936c3bcd8b1449977f512d823947ebc0532abb853e2876f802
pixman-0.26.2-5.el6_4.s390x.rpm     MD5: e0cfb0fa39795f23cae66c8980e0e3e4
SHA-256: fa1686faff08ddd84ee95046296f3902197c43b4e4ac21facb8f9165912ca84e
pixman-debuginfo-0.26.2-5.el6_4.s390.rpm     MD5: 083e4fc4c3bc9ad9f01ab9d1a5ed07f0
SHA-256: 393bdbd589cb683fcde05136c8ee54c51792819a2842afab46bc67b834db522b
pixman-debuginfo-0.26.2-5.el6_4.s390x.rpm     MD5: 5659fe57b955277f763a8e379079769b
SHA-256: 643dfcb8d654006bd59f7b5750f45bccf6f548af67b0d660f2da4ddca9e732d6
pixman-devel-0.26.2-5.el6_4.s390.rpm     MD5: da24cd63e32025776203e79232f2490c
SHA-256: e6a9479e8e756e0fd513d0ee41865b1d53e5116efebf137c9db05bc7659c2e34
pixman-devel-0.26.2-5.el6_4.s390x.rpm     MD5: c6f4147e9936fac1999f689226e6d360
SHA-256: 2bffbc801af9c4c0826d64aeb0872ce38a9fe574d8df0b05e843c95359563447
 
x86_64:
pixman-0.26.2-5.el6_4.i686.rpm     MD5: eee9bc890916605a43b60259fada1477
SHA-256: d4673d39de4110cc749882f51376b3f56086d945bcc1edcbbe1257cf1f261132
pixman-0.26.2-5.el6_4.x86_64.rpm     MD5: 5489adab1ad33a0e8a240cc90a824f62
SHA-256: 0df505fd41650ed625117300b62a2700438684f0e1b1eb2e78fd7470f2652ff8
pixman-debuginfo-0.26.2-5.el6_4.i686.rpm     MD5: f2ea6294c726599392f821ac975df512
SHA-256: 1a76a8100ec179d2bd63c0cdb01d9464038a8c486d6689f4bb6933f41739e66b
pixman-debuginfo-0.26.2-5.el6_4.x86_64.rpm     MD5: 79ca80d50d9fce6b3a54d8767e8d7a73
SHA-256: 72a5532e34d1895bb5bf7ebb46ca76592001d6586d2699f24e029d81b39adb9e
pixman-devel-0.26.2-5.el6_4.i686.rpm     MD5: b7b51a7b1ed35c61e2fe99ca36d3786b
SHA-256: dba4a9845d0d9ae241ee963beaaddf04c114f3a9d52a56cf299a761c20d66c72
pixman-devel-0.26.2-5.el6_4.x86_64.rpm     MD5: 0385020d2f8b969671b58692436a577b
SHA-256: ca527c5d531a8e82fba001bf8bab039548c01c90eccd270e654e83f98119d423
 
Red Hat Enterprise Linux Workstation (v. 6)

SRPMS:
pixman-0.26.2-5.el6_4.src.rpm
File outdated by:  RHSA-2013:1869
    MD5: 4f4c572ad440b10357487c008be12e0e
SHA-256: 4a10b1904f644b1362695fa352b54b4ad28e7252cf32b0e3789d88070fced922
 
IA-32:
pixman-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: eee9bc890916605a43b60259fada1477
SHA-256: d4673d39de4110cc749882f51376b3f56086d945bcc1edcbbe1257cf1f261132
pixman-debuginfo-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: f2ea6294c726599392f821ac975df512
SHA-256: 1a76a8100ec179d2bd63c0cdb01d9464038a8c486d6689f4bb6933f41739e66b
pixman-devel-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: b7b51a7b1ed35c61e2fe99ca36d3786b
SHA-256: dba4a9845d0d9ae241ee963beaaddf04c114f3a9d52a56cf299a761c20d66c72
 
x86_64:
pixman-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: eee9bc890916605a43b60259fada1477
SHA-256: d4673d39de4110cc749882f51376b3f56086d945bcc1edcbbe1257cf1f261132
pixman-0.26.2-5.el6_4.x86_64.rpm
File outdated by:  RHSA-2013:1869
    MD5: 5489adab1ad33a0e8a240cc90a824f62
SHA-256: 0df505fd41650ed625117300b62a2700438684f0e1b1eb2e78fd7470f2652ff8
pixman-debuginfo-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: f2ea6294c726599392f821ac975df512
SHA-256: 1a76a8100ec179d2bd63c0cdb01d9464038a8c486d6689f4bb6933f41739e66b
pixman-debuginfo-0.26.2-5.el6_4.x86_64.rpm
File outdated by:  RHSA-2013:1869
    MD5: 79ca80d50d9fce6b3a54d8767e8d7a73
SHA-256: 72a5532e34d1895bb5bf7ebb46ca76592001d6586d2699f24e029d81b39adb9e
pixman-devel-0.26.2-5.el6_4.i686.rpm
File outdated by:  RHSA-2013:1869
    MD5: b7b51a7b1ed35c61e2fe99ca36d3786b
SHA-256: dba4a9845d0d9ae241ee963beaaddf04c114f3a9d52a56cf299a761c20d66c72
pixman-devel-0.26.2-5.el6_4.x86_64.rpm
File outdated by:  RHSA-2013:1869
    MD5: 0385020d2f8b969671b58692436a577b
SHA-256: ca527c5d531a8e82fba001bf8bab039548c01c90eccd270e654e83f98119d423
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

910149 - CVE-2013-1591 pixman: stack-based buffer overflow


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/