CVE-2022-44638: Integer Overflow
First published: Thu Nov 03 2022(Updated: )
In libpixman in Pixman before 0.42.2, there is an out-of-bounds write (aka heap-based buffer overflow) in rasterize_edges_8 due to an integer overflow in pixman_sample_floor_y.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Pixman Pixman | <0.42.2 | |
| Debian Debian Linux | =10.0 | |
| Debian Debian Linux | =11.0 | |
| Fedoraproject Fedora | =35 | |
| Fedoraproject Fedora | =36 | |
| Fedoraproject Fedora | =37 | |
| debian/pixman | <=0.36.0-1 | 0.36.0-1+deb10u1 0.40.0-1.1~deb11u1 0.42.2-1 |
| redhat/Pixman | <0.42.2 | 0.42.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://gitlab.freedesktop.org/pixman/pixman/-/issues/63
- https://security-tracker.debian.org/tracker/CVE-2022-44638
- https://www.cve.org/CVERecord?id=CVE-2022-44638
- https://gitlab.freedesktop.org/pixman/pixman/-/commit/a1f88e842e0216a5b4df1ab023caebe33c101395
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1023427
- http://packetstormsecurity.com/files/170121/pixman-pixman_sample_floor_y-Integer-Overflow.html
- http://www.openwall.com/lists/oss-security/2022/11/05/1
- https://lists.debian.org/debian-lts-announce/2022/11/msg00008.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AJ5VY2VYXE4WTRGQ6LMGLF6FV3SY37YE/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BY4OPSIB33ETNUXZY2UPZ4NGQ3OKDY4D/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IUJ2BULJTZ2BMSKQHB6US674P55UCWWS/
- https://www.debian.org/security/2022/dsa-5276
- https://bugs.chromium.org/p/project-zero/issues/detail?id=2345
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2139989
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2139991
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2139990
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2139992
- https://access.redhat.com/errata/RHSA-2023:7375
- https://access.redhat.com/errata/RHSA-2023:7386
- https://access.redhat.com/errata/RHSA-2023:7403
- https://access.redhat.com/errata/RHSA-2023:7531
- https://access.redhat.com/errata/RHSA-2023:7754
- https://access.redhat.com/errata/RHSA-2024:0131
- https://access.redhat.com/errata/RHSA-2024:2525
- https://bugzilla.redhat.com/show_bug.cgi?id=2139988
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BY4OPSIB33ETNUXZY2UPZ4NGQ3OKDY4D/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AJ5VY2VYXE4WTRGQ6LMGLF6FV3SY37YE/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IUJ2BULJTZ2BMSKQHB6US674P55UCWWS/
Frequently Asked Questions
What is the severity of CVE-2022-44638?
The severity of CVE-2022-44638 is high, with a severity value of 8.8.
What is the affected software for CVE-2022-44638?
The affected software for CVE-2022-44638 includes Pixman versions up to exclusive 0.42.2, Debian Linux 10.0 and 11.0, and Fedora versions 35, 36, and 37.
What is the vulnerability description of CVE-2022-44638?
CVE-2022-44638 is a heap-based buffer overflow vulnerability in Pixman's libpixman, specifically in the rasterize_edges_8 function, caused by an integer overflow in pixman_sample_floor_y.
How can I fix CVE-2022-44638?
To fix CVE-2022-44638, update to Pixman version 0.42.2 or higher, Debian Linux versions 10.0-1+deb10u1, 11.0-1.1~deb11u1, or the pixman package 0.42.2-1 for Debian. For Fedora, update to versions 36 or 37.
What are the references for CVE-2022-44638?
The references for CVE-2022-44638 are: [1] GitLab issue: https://gitlab.freedesktop.org/pixman/pixman/-/issues/63, [2] Debian Security Tracker: https://security-tracker.debian.org/tracker/CVE-2022-44638, [3] CVE-2022-44638 on CVE website: https://www.cve.org/CVERecord?id=CVE-2022-44638.
- collector/debian-bugs
- alias/CVE-2022-44638
- collector/nvd-index
- collector/security-tracker-debian
- agent/weakness
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- agent/remedy
- agent/author
- agent/severity
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/references
- agent/tags
- agent/description
- collector/mitre-cve
- source/MITRE
- vendor/pixman
- canonical/pixman pixman
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/10.0
- version/debian debian linux/11.0
- vendor/fedoraproject
- canonical/fedoraproject fedora
- version/fedoraproject fedora/35
- version/fedoraproject fedora/36
- version/fedoraproject fedora/37
- package-manager/debian
- package-manager/redhat