fix for ZDI-11426

Avoid leaking un-initalized memory to clients by zeroing the
whole pixmap on initial allocation.

This vulnerability was discovered by:
Jan-Niklas Sohn working with Trend Micro Zero Day Initiative

Signed-off-by: Matthieu Herrb <matthieu@herrb.eu>
Reviewed-by: Alan Coopersmith <alan.coopersmith@oracle.com>
(cherry picked from commit a6b2cbe9)
3 jobs for server-1.20-branch in 5 minutes and 18 seconds (queued for 1 second)
Status Job ID Name Coverage
  Docker Image
passed #4129686
debian-testing

00:00:28

 
  Build And Test
passed #4129687
autotools-build-and-test

00:04:50

passed #4129688
meson-build-and-test

00:01:10