It was discovered that applications using the mesa library, a free implementation of the OpenGL API, may crash or execute arbitrary code due to an out of bounds memory access in the library. This vulnerability only affects systems with Intel chipsets. The oldstable distribution (squeeze) is not affected by this problem.

For the stable distribution (wheezy), this problem has been fixed in version 8.0.5-4+deb7u2. For the unstable distribution (sid), this problem has been fixed in version 8.0.5-7. We recommend that you upgrade your mesa packages.

Mesa is a free implementation of the OpenGL API.

mesa on Debian Linux

This check tests the installed software version using the apt package manager.

• http://www.debian.org/security/2013/dsa-2704.html

---

Updated on 2015-03-25