Format: 1.7 Date: Thu, 05 Mar 2009 06:39:46 -0600 Source: libpng Binary: libpng12-0 libpng12-dev libpng3 libpng12-0-udeb Architecture: hppa Version: 1.2.15~beta5-3ubuntu0.1 Distribution: hardy Urgency: low Maintainer: Ubuntu/hppa Build Daemon Changed-By: Jamie Strandboge Description: libpng12-0 - PNG library - runtime libpng12-0-udeb - PNG library - minimal runtime library (udeb) libpng12-dev - PNG library - development libpng3 - PNG library - runtime Launchpad-Bugs-Fixed: 217128 324258 338027 Changes: libpng (1.2.15~beta5-3ubuntu0.1) hardy-security; urgency=low . * SECURITY UPDATE: denial of service and possible execution of arbitrary code via crafted image (LP: #338027) - initialize pointers in pngread.c, pngrtans.c, pngset.c and example.c - CVE-2009-0040 * SECURITY UPDATE: denial of service and possible execution of arbitrary code via crafted image (LP: #217128) - initialize "unknown" chunks in pngpread.c, pngrutil.c and pngset.c - CVE-2008-1382 * SECURITY UPDATE: denial of service via off-by-one error - shorten tIME_string to 29 bytes in pngtest.c - CVE-2008-3964 * SECURITY UPDATE: denial of service via incorrect memory assignment (LP: #324258) - update pngwutil.c to properly set new_key to NULL string - CVE-2008-5907 * SECURITY UPDATE: denial of service via a crafted PNG image - fix for pngset.c to properly check palette size in png_set_hIST - CVE-2007-5268 * SECURITY UPDATE: denial of service via a crafted PNG image - fix for pngpread.c and pngrutil.c to properly do bounds checking on read operations. Previous version only had a partial fix. - CVE-2007-5269 Files: 346937342d9884a93ded63241acf0aaf 193312 libs optional libpng12-0_1.2.15~beta5-3ubuntu0.1_hppa.deb 61848920255a1d23325f865cee735184 187058 libdevel optional libpng12-dev_1.2.15~beta5-3ubuntu0.1_hppa.deb 37b6b81f2fdf32ec11d526a16538bad4 73898 debian-installer extra libpng12-0-udeb_1.2.15~beta5-3ubuntu0.1_hppa.udeb Original-Maintainer: Anibal Monsalve Salazar Package-Type: udeb