untrusted comment: verify with openbsd-71-base.pub
RWR2eHwZTOEiTSF1fxqBtnWB8a7Xt8Wvwz+sso4dyrtdLzP4hCaHJVWx7RmtKyvLvtu1wI8Xe+gUBGkl547wmeY5M0MeiFlMJwQ=

OpenBSD 7.1 errata 013, November 15, 2022:

CVE-2022-44638: An integer overflow in pixman may lead to an out-of-bounds
write.

Apply by doing:
   signify -Vep /etc/signify/openbsd-71-base.pub -x 013_pixman.patch.sig \
       -m - | (cd /usr/xenocara && patch -p0)

And then rebuild pixman:
   cd /usr/xenocara/lib/pixman
   make -f Makefile.bsd-wrapper obj
   make -f Makefile.bsd-wrapper build

Index: lib/pixman/pixman/pixman-trap.c
===================================================================
RCS file: /cvs/OpenBSD/xenocara/lib/pixman/pixman/pixman-trap.c,v
retrieving revision 1.9
diff -u -p -u -r1.9 pixman-trap.c
--- lib/pixman/pixman/pixman-trap.c     7 Jun 2013 17:18:01 -0000       1.9
+++ lib/pixman/pixman/pixman-trap.c     6 Nov 2022 11:26:01 -0000
@@ -74,7 +74,7 @@ pixman_sample_floor_y (pixman_fixed_t y,

    if (f < Y_FRAC_FIRST (n))
    {
-       if (pixman_fixed_to_int (i) == 0x8000)
+       if (pixman_fixed_to_int (i) == 0xffff8000)
       {
           f = 0; /* saturate */
       }

You are viewing proxied material from ftp.icm.edu.pl. The copyright of proxied material belongs to its original authors. Any comments or complaints in relation to proxied material should be directed to the original authors of the content concerned. Please see the disclaimer for more details.