[ubuntu/precise] libpng 1.2.46-3ubuntu2 (Accepted)
Jamie Strandboge
jamie at ubuntu.com
Thu Feb 16 15:05:22 UTC 2012
libpng (1.2.46-3ubuntu2) precise; urgency=low
* SECURITY UPDATE: fix integer overflow / truncation
- debian/patches/CVE-2011-3026.patch: adjust pngrutil.c to verify size
when allocating memory in png_decompress_chunk()
- CVE-2011-3026
Date: Wed, 15 Feb 2012 21:10:29 -0600
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/precise/+source/libpng/1.2.46-3ubuntu2
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Wed, 15 Feb 2012 21:10:29 -0600
Source: libpng
Binary: libpng12-0 libpng12-dev libpng3 libpng12-0-udeb
Architecture: source
Version: 1.2.46-3ubuntu2
Distribution: precise
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description:
libpng12-0 - PNG library - runtime
libpng12-0-udeb - PNG library - minimal runtime library (udeb)
libpng12-dev - PNG library - development
libpng3 - PNG library - runtime
Changes:
libpng (1.2.46-3ubuntu2) precise; urgency=low
.
* SECURITY UPDATE: fix integer overflow / truncation
- debian/patches/CVE-2011-3026.patch: adjust pngrutil.c to verify size
when allocating memory in png_decompress_chunk()
- CVE-2011-3026
Checksums-Sha1:
591f96b3957c4bbb1edde1190a65a58f51aa2ccc 2083 libpng_1.2.46-3ubuntu2.dsc
63747b0f283345ea083f95d9d2017e8e3bcf7145 16213 libpng_1.2.46-3ubuntu2.debian.tar.bz2
Checksums-Sha256:
54491a7f217b80e5a4a06aae663112915922b9b35ac5e99ea54bb9e39c9cad20 2083 libpng_1.2.46-3ubuntu2.dsc
2b8eebd253648c17711615093b8c0f988799d5ff9998059dc1fc89ae4729dfe4 16213 libpng_1.2.46-3ubuntu2.debian.tar.bz2
Files:
b18ad4cae7f33ae3f961862c875c4fb1 2083 libs optional libpng_1.2.46-3ubuntu2.dsc
edf808e4e3dc423859f887ba447e8777 16213 libs optional libpng_1.2.46-3ubuntu2.debian.tar.bz2
Original-Maintainer: Anibal Monsalve Salazar <anibal at debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)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=NPnz
-----END PGP SIGNATURE-----
More information about the Precise-changes
mailing list