Debian
libpng package

Change logs for libpng source package in Experimental

  1. Experimental (99)
  2. Change log 
  • libpng (1.5.11-1) experimental; urgency=low


  * New upstream release.

 -- Nobuhiro Iwamatsu <email address hidden>  Thu, 05 Jul 2012 13:18:14 +0900
  • libpng (1.5.10-3) experimental; urgency=low


  * Remove libpng12-dev binary package. libpng-dev provides and replaces
    libpng12-dev.

 -- Anibal Monsalve Salazar <email address hidden>  Sat, 19 May 2012 18:55:25 +1000
  • libpng (1.5.10-2) experimental; urgency=low


  * Add transition packages libpng3, libpng12-0 and libpng12-dev

 -- Anibal Monsalve Salazar <email address hidden>  Fri, 18 May 2012 10:09:24 +1000
  • libpng (1.5.10-1) experimental; urgency=high


  * New upstream version 1.5.10
    - Fix CVE-2011-3048 (memory corruption flaw)
      Closes: 667475
  * Standards Version is 3.9.3

 -- Anibal Monsalve Salazar <email address hidden>  Mon, 09 Apr 2012 13:29:39 +1000
  • libpng (1.5.9-1) experimental; urgency=low


  * New upstream version 1.5.9

    The purpose of this release is to fix the dangerous CVE-2011-3026.
    The libpng patch is different from the one that was distributed
    earlier by Chromium, in that the libpng user limit feature is not
    crippled by the patch.

    Remove 02-660026-CVE-2011-3026.patch

 -- Anibal Monsalve Salazar <email address hidden>  Sun, 19 Feb 2012 12:22:43 +1100
  • libpng (1.5.8-1) experimental; urgency=high


  * New upstream release.
    Fix a one-byte (stack) buffer-overrun bug in
    png_formatted_warning(), which could lead to crashes (denial of
    service) or, conceivably, execution of hostile code.
    This vulnerability has been assigned ID CVE-2011-3464.
  * Check for both truncation (64-bit platforms) and integer overflow
    Fix CVE-2011-3026
    Add 02-660026-CVE-2011-3026.patch
    Closes: 660026

 -- Anibal Monsalve Salazar <email address hidden>  Thu, 16 Feb 2012 09:18:13 +1100
  • libpng (1.5.7-2) experimental; urgency=low


  * Fix typo from PPFLAGS to CPPFLAGS.

 -- Nobuhiro Iwamatsu <email address hidden>  Mon, 09 Jan 2012 21:39:33 +0900
  • libpng (1.5.7-1) experimental; urgency=low


  * New upstream release.
  * Update debian/rules.
    Enabled hardened build flags. (Closes: #654149)

 -- Nobuhiro Iwamatsu <email address hidden>  Mon, 09 Jan 2012 21:02:50 +0900
  • libpng (1.5.6-1) experimental; urgency=low


  * New upstream release.

 -- Nobuhiro Iwamatsu <email address hidden>  Mon, 07 Nov 2011 12:35:59 +0900
  • libpng (1.5.5-1) experimental; urgency=low


  * New upstream release.
  * Fix lintian error: udeb-uses-non-gzip-data-tarball.
    Changeed option of dh_builddeb for every package.
  * Fix lintian warning: brace-expansion-in-debhelper-config-file.
    Remove brace-expansion from debian/libpng-dev.install.

 -- Nobuhiro Iwamatsu <email address hidden>  Wed, 26 Oct 2011 12:35:05 +0900
  • libpng (1.5.4-2) experimental; urgency=low
  * Port Steve Langasek's changes for 1.2.46-1    - Build for multiarch. Closes: 634151    - Drop debian/libpng15-15-udeb.dirs, which just adds a pointless empty      directory to the udeb  * Update debian/docs and debian/libpng15-15.docs  * Add debian/libpng15-15.doc-base  * Build-Depend on autotools-dev -- Anibal Monsalve Salazar <email address hidden>  Tue, 19 Jul 2011 00:49:57 +1000
  • libpng (1.5.4-1) experimental; urgency=low
  * New upstream release (Closes: #633871).    - Fix CVE: CVE-2011-2690      Buffer overwrite in png_rgb_to_gray    - CVE: CVE-2011-2691      Crash in png_default_error due to use of NULL Pointer    - CVE: CVE-2011-2692      Memory corruption when handling empty sCAL chunks    - Remove patches/02-632786-CVE-2011-2501.patch. Applied to upstream. -- Nobuhiro Iwamatsu <email address hidden>  Fri, 15 Jul 2011 12:01:42 +0900
  • libpng (1.5.2-3) experimental; urgency=low
  * Rename libpng15-dev to libpng-dev -- Anibal Monsalve Salazar <email address hidden>  Wed, 06 Jul 2011 13:14:03 +1000
  • libpng (1.5.2-2) experimental; urgency=low
  * Fix 1-byte uninitialized memory reference in png_format_buffer()    Fix CVE-2011-2501    Add debian/patches/02-632786-CVE-2011-2501.patch    Closes: 632786  * Pass "-Zbzip2 -z9" to dpkg-deb  * Fix xc-package-type-in-debian-control  * Fix debian-rules-missing-recommended-target -- Anibal Monsalve Salazar <email address hidden>  Wed, 06 Jul 2011 11:27:05 +1000
  • libpng (1.5.2-1) experimental; urgency=low
  * New upstream release (Closes: #565821, #574257, #606867).  * Remove Sam Hocevar from Uploaders.  * Add myself to Uploaders.  * Remove libtool, automake and autoconf from Build-depends.  * Disable practice of autogen.sh from debian/rules.  * Remove support libpng3 package (Closes: #369104, #615558).  * Update debian/copyright.    - Update copyright holder.    - Add new license for contrib/pngsuite (Closes: #615558).  * Remove patches directory.  * Add libpng15-dev.lintian-overrides.    Overrides manpage-has-errors-from-man usr/share/man/man3/libpng.3.gz. -- Nobuhiro Iwamatsu <email address hidden>  Thu, 09 Jun 2011 21:37:11 +0900