{ "schema_version": "1.7.0", "id": "MGASA-2018-0044", "published": "2018-01-03T14:22:14Z", "modified": "2018-01-03T13:53:35Z", "summary": "Updated wayland packages fix security vulnerability", "details": "It is possible to trigger heap overflows due to an integer overflow while\nparsing images. The integer overflow occurs because the chosen limit\n0x10000 for dimensions is too large for 32 bit systems, because each pixel\ntakes 4 bytes. Properly chosen values allow an overflow which in turn will\nlead to less allocated memory than needed for subsequent reads\n(rhbz#1522638).\n", "references": [ { "type": "ADVISORY", "url": "https://advisories.mageia.org/MGASA-2018-0044.html" }, { "type": "REPORT", "url": "https://bugs.mageia.org/show_bug.cgi?id=22241" }, { "type": "WEB", "url": "https://lists.freedesktop.org/archives/wayland-devel/2017-November/035979.html" }, { "type": "WEB", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/IXMOIFOO2UOSQM24VCICNJ4KXHAPBQ4D/" } ], "affected": [ { "package": { "ecosystem": "Mageia:5", "name": "wayland", "purl": "pkg:rpm/mageia/wayland?arch=source&distro=mageia-5" }, "ranges": [ { "type": "ECOSYSTEM", "events": [ { "introduced": "0" }, { "fixed": "1.6.0-2.1.mga5" } ] } ], "ecosystem_specific": { "section": "core" } }, { "package": { "ecosystem": "Mageia:6", "name": "wayland", "purl": "pkg:rpm/mageia/wayland?arch=source&distro=mageia-6" }, "ranges": [ { "type": "ECOSYSTEM", "events": [ { "introduced": "0" }, { "fixed": "1.11.0-1.1.mga6" } ] } ], "ecosystem_specific": { "section": "core" } } ], "credits": [ { "name": "Mageia", "type": "COORDINATOR", "contact": [ "https://wiki.mageia.org/en/Packages_Security_Team" ] } ] }