[ubuntu/jaunty-security] libpng, libpng (delayed) 1.2.27-2ubuntu2.2 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Thu Jul 8 14:04:01 BST 2010
libpng (1.2.27-2ubuntu2.2) jaunty-security; urgency=low
* SECURITY UPDATE: arbitrary code execution from additional data row via
malformed PNG image
- debian/patches/05-CVE-2010-1205.patch: check for unexpected data
after the last row in pngpread.c.
- CVE-2010-1205
* SECURITY UPDATE: denial of service via memory leak from malformed sCAL
chunks
- debian/patches/06-CVE-2010-2249.patch: properly free memory in
pngrutil.c.
- CVE-2010-2249
Date: Mon, 05 Jul 2010 13:00:03 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/jaunty/+source/libpng/1.2.27-2ubuntu2.2
-------------- next part --------------
Format: 1.8
Date: Mon, 05 Jul 2010 13:00:03 -0400
Source: libpng
Binary: libpng12-0 libpng12-dev libpng3 libpng12-0-udeb
Architecture: source
Version: 1.2.27-2ubuntu2.2
Distribution: jaunty-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
libpng12-0 - PNG library - runtime
libpng12-0-udeb - PNG library - minimal runtime library (udeb)
libpng12-dev - PNG library - development
libpng3 - PNG library - runtime
Changes:
libpng (1.2.27-2ubuntu2.2) jaunty-security; urgency=low
.
* SECURITY UPDATE: arbitrary code execution from additional data row via
malformed PNG image
- debian/patches/05-CVE-2010-1205.patch: check for unexpected data
after the last row in pngpread.c.
- CVE-2010-1205
* SECURITY UPDATE: denial of service via memory leak from malformed sCAL
chunks
- debian/patches/06-CVE-2010-2249.patch: properly free memory in
pngrutil.c.
- CVE-2010-2249
Checksums-Sha1:
3e189c476fba170775bcfd81c34c91939588d7c4 1296 libpng_1.2.27-2ubuntu2.2.dsc
afa5944c8dc2d3f9855803e2617fcab42bed1a29 176459 libpng_1.2.27-2ubuntu2.2.diff.gz
Checksums-Sha256:
7aa15ca6a9648ef8d5e3baf08d910982665f87b3b49f4458ba2a5d2d3e7faae9 1296 libpng_1.2.27-2ubuntu2.2.dsc
ba689c6ba38ec17fabd177512bda6395c7a9aa764e6333f703a06512248dd951 176459 libpng_1.2.27-2ubuntu2.2.diff.gz
Files:
b66efe2157ab6f3dad6e57b4fe9dbf13 1296 libs optional libpng_1.2.27-2ubuntu2.2.dsc
b2f27af9534f3c5b9a120680cd41ce7c 176459 libs optional libpng_1.2.27-2ubuntu2.2.diff.gz
Original-Maintainer: Anibal Monsalve Salazar <anibal at debian.org>
More information about the Jaunty-changes
mailing list