Fix CVE-2016-5296: Heap-buffer-overflow WRITE in rasterize_edges_1
Adapted for upstream pixman based on:

  https://hg.mozilla.org/releases/mozilla-esr45/rev/5e39c1c2fded

--- pixman-0.34.0/pixman/pixman-edge-imp.h.orig	2015-06-30 05:48:31.000000000 -0400
+++ pixman-0.34.0/pixman/pixman-edge-imp.h	2016-11-16 01:09:34.046335106 -0500
@@ -55,8 +55,9 @@
 	 *
 	 * (The AA case does a similar  adjustment in RENDER_SAMPLES_X)
 	 */
-	lx += X_FRAC_FIRST(1) - pixman_fixed_e;
-	rx += X_FRAC_FIRST(1) - pixman_fixed_e;
+	/* we cast to unsigned to get defined behaviour for overflow */
+	lx = (unsigned)lx + X_FRAC_FIRST(1) - pixman_fixed_e;
+	rx = (unsigned)rx + X_FRAC_FIRST(1) - pixman_fixed_e;
 #endif
 	/* clip X */
 	if (lx < 0)
'>
<option value='koszko' selected='selected'>koszko</option>
<option value='koszko-scripts'>koszko-scripts</option>
</select> <input type='submit' value='switch'/></form></td></tr>
<tr><td class='sub'>Wojtek's customized Guix</td><td class='sub right'></td></tr></table>
<table class='tabs'><tr><td>
<a href='/guix/about/'>about</a><a href='/guix/'>summary</a><a href='/guix/refs/?id=c8b19d97833243e7e89f8ca83a0d641de6516271'>refs</a><a class='active' href='/guix/log/gnu/packages/ebook.scm'>log</a><a href='/guix/tree/gnu/packages/ebook.scm?id=c8b19d97833243e7e89f8ca83a0d641de6516271'>tree</a><a href='/guix/commit/gnu/packages/ebook.scm?id=c8b19d97833243e7e89f8ca83a0d641de6516271'>commit</a><a href='/guix/diff/gnu/packages/ebook.scm?id=c8b19d97833243e7e89f8ca83a0d641de6516271'>diff</a></td><td class='form'><form class='right' method='get' action='/guix/log/gnu/packages/ebook.scm'>
<input type='hidden' name='id' value='c8b19d97833243e7e89f8ca83a0d641de6516271'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/guix/log/?id=c8b19d97833243e7e89f8ca83a0d641de6516271'>root</a>/<a href='/guix/log/gnu?id=c8b19d97833243e7e89f8ca83a0d641de6516271'>gnu</a>/<a href='/guix/log/gnu/packages?id=c8b19d97833243e7e89f8ca83a0d641de6516271'>packages</a>/<a href='/guix/log/gnu/packages/ebook.scm?id=c8b19d97833243e7e89f8ca83a0d641de6516271'>ebook.scm</a></div><div class='content'><table class='list nowrap'><tr class='nohover'><th class='left'>Age</th><th class='left'>Commit message (<a href='/guix/log/gnu/packages/ebook.scm?id=c8b19d97833243e7e89f8ca83a0d641de6516271&amp;showmsg=1'>Expand</a>)</th><th class='left'>Author</th></tr>
<tr><td><span title='2022-02-19 01:05:09 +0100'>2022-02-19</span></td><td><a href='/guix/commit/gnu/packages/ebook.scm?id=81359197b43b3717b4c99dc9d3ea3d70db009782'>gnu: calibre: Improve package style.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/packages/ebook.scm (calibre)[snippet]: Remove trailing #T.
[native-inputs]: Add BASH-MINIMAL. Re-order entries alphabetically.
[arguments]&lt;#:phases&gt;: Use G-expressions. Remove trailing #T.  Use
SEARCH-INPUT-FILE (or SEARCH-NATIVE-INPUT-FILE) instead of WHICH.  Use
THIS-PACKAGE-INPUT instead of ASSOC-REF.
</span></span></td><td>Nicolas Goaziou</td></tr>
<tr><td><span title='2022-02-19 00:11:04 +0100'>2022-02-19</span></td><td><a href='/guix/commit/gnu/packages/ebook.scm?id=c3aa92358f8a05c3dd6b0e78e3243661d046fa93'>gnu: calibre: Remove input labels.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/packages/ebook.scm (calibre)[inputs]: Remove labels.

Signed-off-by: Nicolas Goaziou &lt;mail@nicolasgoaziou.fr&gt;
</span></span></td><td>Brendan Tildesley</td></tr>
<tr><td><span title='2022-02-19 00:09:42 +0100'>2022-02-19</span></td><td><a href='/guix/commit/gnu/packages/ebook.scm?id=21fe2ad405412ffed4d602c414aa1aeebbeb1a44'>gnu: calibre: Update to 5.36.0.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/packages/ebook.scm (calibre): Update to 5.36.0.
Remove no longer needed zeroconf patch.
[inputs]: Remove python-dbus, python-dukpy, python-pycryptodome. Add python-jeepney, libstemmer.
* gnu/packages/patches/calibre-fix-zeroconf.patch: Delete patch.
* gnu/local.mk: Remove reference to patch.

Signed-off-by: Nicolas Goaziou &lt;mail@nicolasgoaziou.fr&gt;
</span></span></td><td>Brendan Tildesley</td></tr>

Age	Commit message (Expand)	Author
2022-02-19	gnu: calibre: Improve package style....* gnu/packages/ebook.scm (calibre)[snippet]: Remove trailing #T. [native-inputs]: Add BASH-MINIMAL. Re-order entries alphabetically. [arguments]<#:phases>: Use G-expressions. Remove trailing #T. Use SEARCH-INPUT-FILE (or SEARCH-NATIVE-INPUT-FILE) instead of WHICH. Use THIS-PACKAGE-INPUT instead of ASSOC-REF.	Nicolas Goaziou
2022-02-19	gnu: calibre: Remove input labels....* gnu/packages/ebook.scm (calibre)[inputs]: Remove labels. Signed-off-by: Nicolas Goaziou <mail@nicolasgoaziou.fr>	Brendan Tildesley
2022-02-19	gnu: calibre: Update to 5.36.0....* gnu/packages/ebook.scm (calibre): Update to 5.36.0. Remove no longer needed zeroconf patch. [inputs]: Remove python-dbus, python-dukpy, python-pycryptodome. Add python-jeepney, libstemmer. * gnu/packages/patches/calibre-fix-zeroconf.patch: Delete patch. * gnu/local.mk: Remove reference to patch. Signed-off-by: Nicolas Goaziou <mail@nicolasgoaziou.fr>	Brendan Tildesley