Fix CVE-2016-5296: Heap-buffer-overflow WRITE in rasterize_edges_1
Adapted for upstream pixman based on:

  https://hg.mozilla.org/releases/mozilla-esr45/rev/5e39c1c2fded

--- pixman-0.34.0/pixman/pixman-edge-imp.h.orig	2015-06-30 05:48:31.000000000 -0400
+++ pixman-0.34.0/pixman/pixman-edge-imp.h	2016-11-16 01:09:34.046335106 -0500
@@ -55,8 +55,9 @@
 	 *
 	 * (The AA case does a similar  adjustment in RENDER_SAMPLES_X)
 	 */
-	lx += X_FRAC_FIRST(1) - pixman_fixed_e;
-	rx += X_FRAC_FIRST(1) - pixman_fixed_e;
+	/* we cast to unsigned to get defined behaviour for overflow */
+	lx = (unsigned)lx + X_FRAC_FIRST(1) - pixman_fixed_e;
+	rx = (unsigned)rx + X_FRAC_FIRST(1) - pixman_fixed_e;
 #endif
 	/* clip X */
 	if (lx < 0)
'>
<option value='koszko' selected='selected'>koszko</option>
<option value='koszko-scripts'>koszko-scripts</option>
</select> <input type='submit' value='switch'/></form></td></tr>
<tr><td class='sub'>Wojtek's customized Guix</td><td class='sub right'></td></tr></table>
<table class='tabs'><tr><td>
<a href='/guix/about/'>about</a><a href='/guix/'>summary</a><a href='/guix/refs/?id=c48fa0ad329eba62616e37468fc630eb7a1b58ac'>refs</a><a class='active' href='/guix/log/gnu/packages/slang.scm'>log</a><a href='/guix/tree/gnu/packages/slang.scm?id=c48fa0ad329eba62616e37468fc630eb7a1b58ac'>tree</a><a href='/guix/commit/gnu/packages/slang.scm?id=c48fa0ad329eba62616e37468fc630eb7a1b58ac'>commit</a><a href='/guix/diff/gnu/packages/slang.scm?id=c48fa0ad329eba62616e37468fc630eb7a1b58ac'>diff</a></td><td class='form'><form class='right' method='get' action='/guix/log/gnu/packages/slang.scm'>
<input type='hidden' name='id' value='c48fa0ad329eba62616e37468fc630eb7a1b58ac'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/guix/log/?id=c48fa0ad329eba62616e37468fc630eb7a1b58ac'>root</a>/<a href='/guix/log/gnu?id=c48fa0ad329eba62616e37468fc630eb7a1b58ac'>gnu</a>/<a href='/guix/log/gnu/packages?id=c48fa0ad329eba62616e37468fc630eb7a1b58ac'>packages</a>/<a href='/guix/log/gnu/packages/slang.scm?id=c48fa0ad329eba62616e37468fc630eb7a1b58ac'>slang.scm</a></div><div class='content'><table class='list nowrap'><tr class='nohover'><th class='left'>Age</th><th class='left'>Commit message (<a href='/guix/log/gnu/packages/slang.scm?id=c48fa0ad329eba62616e37468fc630eb7a1b58ac&amp;showmsg=1'>Expand</a>)</th><th class='left'>Author</th></tr>
<tr><td><span title='2016-10-11 12:05:40 -0400'>2016-10-11</span></td><td><a href='/guix/commit/gnu/packages/slang.scm?id=65375f74bce923a5ddbba4819237055d0656a1cd'>gnu: newt: Update source and home-page URLs.</a><span class='msg-avail'>...</span></td><td>Leo Famulari</td></tr>
<tr><td><span title='2015-11-03 17:07:09 -0600'>2015-11-03</span></td><td><a href='/guix/commit/gnu/packages/slang.scm?id=e5930e5a13b878f8ea46aa87f0c638421f32ab59'>gnu: newt: Build python bindings.</a><span class='msg-avail'>...</span></td><td>Eric Bavier</td></tr>
<tr><td><span title='2015-07-27 15:12:52 -0400'>2015-07-27</span></td><td><a href='/guix/commit/gnu/packages/slang.scm?id=cac8bc38a0cdddb4bfda7bd6db8a16af33a611a0'>gnu: Add newt.</a><span class='msg-avail'>...</span></td><td>Mark H Weaver</td></tr>
<tr><td><span title='2015-07-18 13:05:01 +0300'>2015-07-18</span></td><td><a href='/guix/commit/gnu/packages/slang.scm?id=e881752c39d455a249731a4e81e64d86f50afc34'>gnu packages: Clean up synopses and descriptions.</a><span class='msg-avail'>...</span></td><td>Alex Kost</td></tr>
<tr><td><span title='2015-03-08 01:36:35 -0500'>2015-03-08</span></td><td><a href='/guix/commit/gnu/packages/slang.scm?id=ee2a7f0789fd4fc4cf8009b9dbbfdc0dd4294478'>gnu: slang: Combine duplicate 'arguments' fields.</a><span class='msg-avail'>...</span></td><td>Mark H Weaver</td></tr>
<tr><td><span title='2015-03-07 19:23:10 -0500'>2015-03-07</span></td><td><a href='/guix/commit/gnu/packages/slang.scm?id=22e357397a76ef274b9b9466ace8bf31c8c472b4'>gnu: slang: Disable parallel build.</a><span class='msg-avail'>...</span></td><td>Mark H Weaver</td></tr>
<tr><td><span title='2015-01-21 15:16:10 +0100'>2015-01-21</span></td><td><a href='/guix/commit/gnu/packages/slang.scm?id=e9257d377a60e50b803de2789fce59270a19b801'>gnu: Add S-Lang.</a><span class='msg-avail'>...</span></td><td>Ludovic Courtès</td></tr>

Age	Commit message (Expand)	Author
2016-10-11	gnu: newt: Update source and home-page URLs....	Leo Famulari
2015-11-03	gnu: newt: Build python bindings....	Eric Bavier
2015-07-27	gnu: Add newt....	Mark H Weaver
2015-07-18	gnu packages: Clean up synopses and descriptions....	Alex Kost
2015-03-08	gnu: slang: Combine duplicate 'arguments' fields....	Mark H Weaver
2015-03-07	gnu: slang: Disable parallel build....	Mark H Weaver
2015-01-21	gnu: Add S-Lang....	Ludovic Courtès