+++ This bug was initially created as a clone of Bug #17731 +++ A CVE was requested for an integer overflow that affects gtk+ and several apps: http://openwall.com/lists/oss-security/2016/02/10/2 A commit upstream in gtk+ to fix it is linked in the message above. Patched pinpoint packages uploaded for Mageia 5 and Cauldron. Suggested advisory: ======================== Updated pinpoint packages fix security vulnerability: Due to a logic error, an attempt to allocate a large block of memory fails in cairo_new_surface_from_pixbuf, leading to a crash of pinpoint (CVE-2013-7447). References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7447 http://openwall.com/lists/oss-security/2016/02/10/6 ======================== Updated packages in core/updates_testing: ======================== pinpoint-0.1.4-18.1.mga5 from pinpoint-0.1.4-18.1.mga5.src.rpm
Testing M5 x64 real h/w: OK Installed issued pinpoint-0.1.4-18.mga5 Difficult to find out about it. Here is the info: https://wiki.gnome.org/action/show/Apps/Pinpoint?action=show&redirect=Pinpoint and here is the link to a sample script (embedded in the page): http://git.gnome.org/browse/pinpoint/tree/introduction.pin Copy-paste the script to a local file, and edit each *.jpg image reference to a local image. The 'bg' one gets used most. No man page, use $ pinpoint -h for detailed info. Could not find a menu entry for it. Do: $ pinpoint <script filename> It worked (space|down|right to advance). It is quite interesting! Updated to: pinpoint-0.1.4-18.1.mga5 and the presentation worked exactly as previously. Update OK.
CC: (none) => lewyssmithWhiteboard: (none) => MGA5-64-OK
Useful package. Validating. Advisory uploaded. Please push to 5 updates, thanks.
Keywords: (none) => validated_updateWhiteboard: MGA5-64-OK => has_procedure advisory MGA5-64-OKCC: (none) => sysadmin-bugs
URL: (none) => http://lwn.net/Vulnerabilities/675834/
An update for this issue has been pushed to the Mageia Updates repository. http://advisories.mageia.org/MGASA-2016-0073.html
Status: NEW => RESOLVEDResolution: (none) => FIXED