-
libpng (1.5.11-1) experimental; urgency=low
* New upstream release.
-- Nobuhiro Iwamatsu <email address hidden> Thu, 05 Jul 2012 13:18:14 +0900
-
libpng (1.5.10-3) experimental; urgency=low
* Remove libpng12-dev binary package. libpng-dev provides and replaces
libpng12-dev.
-- Anibal Monsalve Salazar <email address hidden> Sat, 19 May 2012 18:55:25 +1000
-
libpng (1.5.10-2) experimental; urgency=low
* Add transition packages libpng3, libpng12-0 and libpng12-dev
-- Anibal Monsalve Salazar <email address hidden> Fri, 18 May 2012 10:09:24 +1000
-
libpng (1.5.10-1) experimental; urgency=high
* New upstream version 1.5.10
- Fix CVE-2011-3048 (memory corruption flaw)
Closes: 667475
* Standards Version is 3.9.3
-- Anibal Monsalve Salazar <email address hidden> Mon, 09 Apr 2012 13:29:39 +1000
-
libpng (1.5.9-1) experimental; urgency=low
* New upstream version 1.5.9
The purpose of this release is to fix the dangerous CVE-2011-3026.
The libpng patch is different from the one that was distributed
earlier by Chromium, in that the libpng user limit feature is not
crippled by the patch.
Remove 02-660026-CVE-2011-3026.patch
-- Anibal Monsalve Salazar <email address hidden> Sun, 19 Feb 2012 12:22:43 +1100
-
libpng (1.5.8-1) experimental; urgency=high
* New upstream release.
Fix a one-byte (stack) buffer-overrun bug in
png_formatted_warning(), which could lead to crashes (denial of
service) or, conceivably, execution of hostile code.
This vulnerability has been assigned ID CVE-2011-3464.
* Check for both truncation (64-bit platforms) and integer overflow
Fix CVE-2011-3026
Add 02-660026-CVE-2011-3026.patch
Closes: 660026
-- Anibal Monsalve Salazar <email address hidden> Thu, 16 Feb 2012 09:18:13 +1100
-
libpng (1.5.7-2) experimental; urgency=low
* Fix typo from PPFLAGS to CPPFLAGS.
-- Nobuhiro Iwamatsu <email address hidden> Mon, 09 Jan 2012 21:39:33 +0900
-
libpng (1.5.7-1) experimental; urgency=low
* New upstream release.
* Update debian/rules.
Enabled hardened build flags. (Closes: #654149)
-- Nobuhiro Iwamatsu <email address hidden> Mon, 09 Jan 2012 21:02:50 +0900
-
libpng (1.5.6-1) experimental; urgency=low
* New upstream release.
-- Nobuhiro Iwamatsu <email address hidden> Mon, 07 Nov 2011 12:35:59 +0900
-
libpng (1.5.5-1) experimental; urgency=low
* New upstream release.
* Fix lintian error: udeb-uses-non-gzip-data-tarball.
Changeed option of dh_builddeb for every package.
* Fix lintian warning: brace-expansion-in-debhelper-config-file.
Remove brace-expansion from debian/libpng-dev.install.
-- Nobuhiro Iwamatsu <email address hidden> Wed, 26 Oct 2011 12:35:05 +0900
-
libpng (1.5.4-2) experimental; urgency=low
* Port Steve Langasek's changes for 1.2.46-1 - Build for multiarch. Closes: 634151 - Drop debian/libpng15-15-udeb.dirs, which just adds a pointless empty directory to the udeb * Update debian/docs and debian/libpng15-15.docs * Add debian/libpng15-15.doc-base * Build-Depend on autotools-dev -- Anibal Monsalve Salazar <email address hidden> Tue, 19 Jul 2011 00:49:57 +1000
-
libpng (1.5.4-1) experimental; urgency=low
* New upstream release (Closes: #633871). - Fix CVE: CVE-2011-2690 Buffer overwrite in png_rgb_to_gray - CVE: CVE-2011-2691 Crash in png_default_error due to use of NULL Pointer - CVE: CVE-2011-2692 Memory corruption when handling empty sCAL chunks - Remove patches/02-632786-CVE-2011-2501.patch. Applied to upstream. -- Nobuhiro Iwamatsu <email address hidden> Fri, 15 Jul 2011 12:01:42 +0900
-
libpng (1.5.2-3) experimental; urgency=low
* Rename libpng15-dev to libpng-dev -- Anibal Monsalve Salazar <email address hidden> Wed, 06 Jul 2011 13:14:03 +1000
-
libpng (1.5.2-2) experimental; urgency=low
* Fix 1-byte uninitialized memory reference in png_format_buffer() Fix CVE-2011-2501 Add debian/patches/02-632786-CVE-2011-2501.patch Closes: 632786 * Pass "-Zbzip2 -z9" to dpkg-deb * Fix xc-package-type-in-debian-control * Fix debian-rules-missing-recommended-target -- Anibal Monsalve Salazar <email address hidden> Wed, 06 Jul 2011 11:27:05 +1000
-
libpng (1.5.2-1) experimental; urgency=low
* New upstream release (Closes: #565821, #574257, #606867). * Remove Sam Hocevar from Uploaders. * Add myself to Uploaders. * Remove libtool, automake and autoconf from Build-depends. * Disable practice of autogen.sh from debian/rules. * Remove support libpng3 package (Closes: #369104, #615558). * Update debian/copyright. - Update copyright holder. - Add new license for contrib/pngsuite (Closes: #615558). * Remove patches directory. * Add libpng15-dev.lintian-overrides. Overrides manpage-has-errors-from-man usr/share/man/man3/libpng.3.gz. -- Nobuhiro Iwamatsu <email address hidden> Thu, 09 Jun 2011 21:37:11 +0900