[ubuntu/dapper-security] libpng, libpng (delayed) 1.2.8rel-5ubuntu0.6 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Thu Jul 8 14:04:15 BST 2010
libpng (1.2.8rel-5ubuntu0.6) dapper-security; urgency=low
* SECURITY UPDATE: arbitrary code execution from additional data row via
malformed PNG image
- pngpread.c: check for unexpected data after the last row.
- patch backported from 1.2.44
- CVE-2010-1205
* SECURITY UPDATE: denial of service via memory leak from malformed sCAL
chunks
- pngrutil.c: properly free memory
- patch backported from 1.2.44
- CVE-2010-2249
Date: Mon, 05 Jul 2010 13:19:22 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Josselin Mouette <joss at debian.org>
https://launchpad.net/ubuntu/dapper/+source/libpng/1.2.8rel-5ubuntu0.6
-------------- next part --------------
Format: 1.7
Date: Mon, 05 Jul 2010 13:19:22 -0400
Source: libpng
Binary: libpng12-dev libpng12-0 libpng12-0-udeb libpng3
Architecture: source
Version: 1.2.8rel-5ubuntu0.6
Distribution: dapper-security
Urgency: low
Maintainer: Josselin Mouette <joss at debian.org>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
libpng12-0 - PNG library - runtime
libpng12-0-udeb - PNG library - minimal runtime library
libpng12-dev - PNG library - development
libpng3 - PNG library - runtime
Changes:
libpng (1.2.8rel-5ubuntu0.6) dapper-security; urgency=low
.
* SECURITY UPDATE: arbitrary code execution from additional data row via
malformed PNG image
- pngpread.c: check for unexpected data after the last row.
- patch backported from 1.2.44
- CVE-2010-1205
* SECURITY UPDATE: denial of service via memory leak from malformed sCAL
chunks
- pngrutil.c: properly free memory
- patch backported from 1.2.44
- CVE-2010-2249
Files:
92722fa973e92a99f982fe05b5826adf 661 libs optional libpng_1.2.8rel-5ubuntu0.6.dsc
8979ca6b113137fe5ee051c1c70571eb 24044 libs optional libpng_1.2.8rel-5ubuntu0.6.diff.gz
Package-Type: udeb
More information about the dapper-changes
mailing list