Fix CVE-2016-5296: Heap-buffer-overflow WRITE in rasterize_edges_1
Adapted for upstream pixman based on:

  https://hg.mozilla.org/releases/mozilla-esr45/rev/5e39c1c2fded

--- pixman-0.34.0/pixman/pixman-edge-imp.h.orig	2015-06-30 05:48:31.000000000 -0400
+++ pixman-0.34.0/pixman/pixman-edge-imp.h	2016-11-16 01:09:34.046335106 -0500
@@ -55,8 +55,9 @@
 	 *
 	 * (The AA case does a similar  adjustment in RENDER_SAMPLES_X)
 	 */
-	lx += X_FRAC_FIRST(1) - pixman_fixed_e;
-	rx += X_FRAC_FIRST(1) - pixman_fixed_e;
+	/* we cast to unsigned to get defined behaviour for overflow */
+	lx = (unsigned)lx + X_FRAC_FIRST(1) - pixman_fixed_e;
+	rx = (unsigned)rx + X_FRAC_FIRST(1) - pixman_fixed_e;
 #endif
 	/* clip X */
 	if (lx < 0)

<option value='koszko' selected='selected'>koszko</option>
<option value='koszko-scripts'>koszko-scripts</option>
</select> <input type='submit' value='switch'/></form></td></tr>
<tr><td class='sub'>Wojtek's customized Guix</td><td class='sub right'></td></tr></table>
<table class='tabs'><tr><td>
<a href='/guix/about/'>about</a><a href='/guix/'>summary</a><a href='/guix/refs/?id=0250eed22d4a3bb80865d7dd6caa2ea9b169c5d2'>refs</a><a class='active' href='/guix/log/gnu/system/setuid.scm'>log</a><a href='/guix/tree/gnu/system/setuid.scm?id=0250eed22d4a3bb80865d7dd6caa2ea9b169c5d2'>tree</a><a href='/guix/commit/gnu/system/setuid.scm?id=0250eed22d4a3bb80865d7dd6caa2ea9b169c5d2'>commit</a><a href='/guix/diff/gnu/system/setuid.scm?id=0250eed22d4a3bb80865d7dd6caa2ea9b169c5d2'>diff</a></td><td class='form'><form class='right' method='get' action='/guix/log/gnu/system/setuid.scm'>
<input type='hidden' name='id' value='0250eed22d4a3bb80865d7dd6caa2ea9b169c5d2'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/guix/log/?id=0250eed22d4a3bb80865d7dd6caa2ea9b169c5d2'>root</a>/<a href='/guix/log/gnu?id=0250eed22d4a3bb80865d7dd6caa2ea9b169c5d2'>gnu</a>/<a href='/guix/log/gnu/system?id=0250eed22d4a3bb80865d7dd6caa2ea9b169c5d2'>system</a>/<a href='/guix/log/gnu/system/setuid.scm?id=0250eed22d4a3bb80865d7dd6caa2ea9b169c5d2'>setuid.scm</a></div><div class='content'><table class='list nowrap'><tr class='nohover'><th class='left'>Age</th><th class='left'>Commit message (<a href='/guix/log/gnu/system/setuid.scm?id=0250eed22d4a3bb80865d7dd6caa2ea9b169c5d2&amp;showmsg=1'>Expand</a>)</th><th class='left'>Author</th></tr>
<tr><td><span title='2024-09-08 02:00:00 +0200'>2024-09-08</span></td><td><a href='/guix/commit/gnu/system/setuid.scm?id=0dd8e4c35109ed8bc2406a0bc13e18823a334937'>privilege: Add file-like-&gt;setuid-program helper.</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/system/privilege.scm (file-like-&gt;setuid-program): New public
procedure.
* gnu/system/setuid.scm: Re-export it for compatibility.
(file-like-&gt;setuid-program): Remove this old version.
* gnu/services/docker.scm (singularity-setuid-programs): Use it (again).
* gnu/services/desktop.scm (enlightenment-privileged-programs): Likewise.

Change-Id: I8e41144438677a15cdadb3063651dbc780715497
</span></span></td><td>Tobias Geerinckx-Rice</td></tr>
<tr><td><span title='2024-08-11 02:00:00 +0200'>2024-08-11</span></td><td><a href='/guix/commit/gnu/system/setuid.scm?id=9099f8bdcc35025a00aaa9ab4169b7e5bbe7f00d'>system: (gnu system setuid) wraps (gnu system privilege).</a><span class='msg-avail'>...<span class='msg-tooltip'>* gnu/system/setuid.scm (setuid-program): Rewrite as syntax to create a
&lt;privileged-program&gt; record that is setuid by default.
(setuid-program?, setuid-program-program, setuid-program-setuid?)
(setuid-program-setgid?, setuid-program-user, setuid-program-group):
Alias their privileged-program equivalent.
</span></span></td><td>Tobias Geerinckx-Rice</td></tr>