[ubuntu/dapper-security] libpng, libpng (delayed) 1.2.8rel-5ubuntu0.5 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Tue Mar 16 17:06:30 GMT 2010
libpng (1.2.8rel-5ubuntu0.5) dapper-security; urgency=low
* SECURITY UPDATE: denial of service via decompression bomb (LP: #533140)
- pngrutil.c: use new two-pass decompression method backported from
1.2.43
- CVE-2010-0205
* SECURITY UPDATE: information disclosure via 1-bit interlaced images
- pngrutil.c: initialize memory if interlaced
- CVE-2009-2042
Date: Mon, 15 Mar 2010 11:11:53 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Josselin Mouette <joss at debian.org>
https://launchpad.net/ubuntu/dapper/+source/libpng/1.2.8rel-5ubuntu0.5
-------------- next part --------------
Format: 1.7
Date: Mon, 15 Mar 2010 11:11:53 -0400
Source: libpng
Binary: libpng12-dev libpng12-0 libpng12-0-udeb libpng3
Architecture: source
Version: 1.2.8rel-5ubuntu0.5
Distribution: dapper-security
Urgency: low
Maintainer: Josselin Mouette <joss at debian.org>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
libpng12-0 - PNG library - runtime
libpng12-0-udeb - PNG library - minimal runtime library
libpng12-dev - PNG library - development
libpng3 - PNG library - runtime
Changes:
libpng (1.2.8rel-5ubuntu0.5) dapper-security; urgency=low
.
* SECURITY UPDATE: denial of service via decompression bomb (LP: #533140)
- pngrutil.c: use new two-pass decompression method backported from
1.2.43
- CVE-2010-0205
* SECURITY UPDATE: information disclosure via 1-bit interlaced images
- pngrutil.c: initialize memory if interlaced
- CVE-2009-2042
Files:
17f3956e31ccadfed0a3bfdc8f5f065a 661 libs optional libpng_1.2.8rel-5ubuntu0.5.dsc
fa254fcc4cb513e59eb9467abad87cca 22337 libs optional libpng_1.2.8rel-5ubuntu0.5.diff.gz
Package-Type: udeb
More information about the dapper-changes
mailing list