Ubuntu

“libpng” 1.2.15~beta5-3ubuntu0.1 source package in Ubuntu

Changelog

libpng (1.2.15~beta5-3ubuntu0.1) hardy-security; urgency=low

  * SECURITY UPDATE: denial of service and possible execution of arbitrary
    code via crafted image (LP: #338027)
    - initialize pointers in pngread.c, pngrtans.c, pngset.c and example.c
    - CVE-2009-0040
  * SECURITY UPDATE: denial of service and possible execution of arbitrary
    code via crafted image (LP: #217128)
    - initialize "unknown" chunks in pngpread.c, pngrutil.c and pngset.c
    - CVE-2008-1382
  * SECURITY UPDATE: denial of service via off-by-one error
    - shorten tIME_string to 29 bytes in pngtest.c
    - CVE-2008-3964
  * SECURITY UPDATE: denial of service via incorrect memory assignment
    (LP: #324258)
    - update pngwutil.c to properly set new_key to NULL string
    - CVE-2008-5907
  * SECURITY UPDATE: denial of service via a crafted PNG image
    - fix for pngset.c to properly check palette size in png_set_hIST
    - CVE-2007-5268
  * SECURITY UPDATE: denial of service via a crafted PNG image
    - fix for pngpread.c and pngrutil.c to properly do bounds checking on read
      operations. Previous version only had a partial fix.
    - CVE-2007-5269

 -- Jamie Strandboge <email address hidden>   Thu, 05 Mar 2009 06:39:46 -0600

Upload details

Uploaded by:
Jamie Strandboge on 2009-03-05
Uploaded to:
Hardy
Original maintainer:
Ubuntu Development Team
Component:
main
Architectures:
any
Section:
libs
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size MD5 Checksum
libpng_1.2.15~beta5.orig.tar.gz 809.6 KiB 77ca14fcee1f1f4daaaa28123bd0b22d
libpng_1.2.15~beta5-3ubuntu0.1.diff.gz 18.0 KiB 2a9f35d6f7a69fcce36ad8704b26d2e4
libpng_1.2.15~beta5-3ubuntu0.1.dsc 831 bytes 32b7c81ffbe2d2957fbff29f93882e25

Binary packages built by this source

libpng12-0: PNG library - runtime

 libpng is a library implementing an interface for reading and writing
 PNG (Portable Network Graphics) format files.
 .
 This package contains the runtime library files needed to run software
 using libpng.
 .
  Homepage: http://www.libpng.org/pub/png/libpng.html

libpng12-0-udeb: PNG library - minimal runtime library

 libpng is a library implementing an interface for reading and writing
 PNG (Portable Network Graphics) format files.
 .
 This package provides the minimal libpng12 runtime library needed for
 the debian-installer.
 .
  Homepage: http://www.libpng.org/pub/png/libpng.html

libpng12-dev: PNG library - development

 libpng is a library implementing an interface for reading and writing
 PNG (Portable Network Graphics) format files.
 .
 This package contains the header and development files needed to build
 programs and packages using libpng.
 .
  Homepage: http://www.libpng.org/pub/png/libpng.html

libpng3: PNG library - runtime

 libpng is a library implementing an interface for reading and writing
 PNG (Portable Network Graphics) format files.
 .
 This package is superseded by libpng12-0, and is provided only for
 transitional purposes.
 .
  Homepage: http://www.libpng.org/pub/png/libpng.html