[ubuntu/hardy-security] libpng 1.2.15~beta5-3ubuntu0.4 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Tue Jul 26 17:04:18 UTC 2011
libpng (1.2.15~beta5-3ubuntu0.4) hardy-security; urgency=low
* SECURITY UPDATE: denial of service and possible arbitrary code
execution via crafted PNG image
- pngrtran.c: validate coefficients.
- http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng;a=commit;h=d572394c2a018ef22e9685ac189f5f05c08ea6f5
- CVE-2011-2690
* SECURITY UPDATE: denial of service and possible arbitrary code
execution via invalid sCAL chunks
- pngrutil.c: check sCAL chunk length.
- http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng;a=commit;h=61a2d8a2a7b03023e63eae9a3e64607aaaa6d339
- CVE-2011-2692
Date: Tue, 26 Jul 2011 08:57:37 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/libpng/1.2.15~beta5-3ubuntu0.4
-------------- next part --------------
Format: 1.7
Date: Tue, 26 Jul 2011 08:57:37 -0400
Source: libpng
Binary: libpng12-0 libpng12-dev libpng3 libpng12-0-udeb
Architecture: source
Version: 1.2.15~beta5-3ubuntu0.4
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
libpng12-0 - PNG library - runtime
libpng12-0-udeb - PNG library - minimal runtime library
libpng12-dev - PNG library - development
libpng3 - PNG library - runtime
Changes:
libpng (1.2.15~beta5-3ubuntu0.4) hardy-security; urgency=low
.
* SECURITY UPDATE: denial of service and possible arbitrary code
execution via crafted PNG image
- pngrtran.c: validate coefficients.
- http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng;a=commit;h=d572394c2a018ef22e9685ac189f5f05c08ea6f5
- CVE-2011-2690
* SECURITY UPDATE: denial of service and possible arbitrary code
execution via invalid sCAL chunks
- pngrutil.c: check sCAL chunk length.
- http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng;a=commit;h=61a2d8a2a7b03023e63eae9a3e64607aaaa6d339
- CVE-2011-2692
Files:
202f34f879b452d951b4b276f06fe3f5 1467 libs optional libpng_1.2.15~beta5-3ubuntu0.4.dsc
78788c0cd68e14d2ae2e7363eb6932e4 22926 libs optional libpng_1.2.15~beta5-3ubuntu0.4.diff.gz
Original-Maintainer: Anibal Monsalve Salazar <anibal at debian.org>
More information about the Hardy-changes
mailing list