[ubuntu/vivid-updates] libpng 1.2.51-0ubuntu3.15.04.2 (Accepted)

[Ubuntu Archive Robot]

libpng (1.2.51-0ubuntu3.15.04.2) vivid-security; urgency=medium

  * SECURITY UPDATE: overflows in png_handle_zTXt(), png_handle_sPLT(),
    png_handle_pCAL(), and png_set_PLTE()
    - debian/patches/CVE-2015-8472.patch: check lengths in pngrutil.c,
      properly use info_ptr in pngset.c.
    - CVE-2015-8472
  * SECURITY UPDATE: out-of-range read in png_check_keyword()
    - debian/patches/CVE-2015-8540.patch: check key_len in pngwutil.c.
    - CVE-2015-8540

Date: 2015-12-18 15:15:18.064388+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/libpng/1.2.51-0ubuntu3.15.04.2
-------------- next part --------------
Sorry, changesfile not available.