[Bug 1086514] CVE-2013-7353 libpng: integer overflow leading to a heap-based buffer overflow in png_set_unknown_chunks()
bugzilla at redhat.com
bugzilla at redhat.com
Fri Apr 11 09:32:53 UTC 2014
https://bugzilla.redhat.com/show_bug.cgi?id=1086514
--- Comment #2 from Huzaifa S. Sidhpurwala <huzaifas at redhat.com> ---
In libpng-1.5.14 the following commits were used by upstream to address this
flaw:
http://sourceforge.net/p/libpng/code/ci/1a3d6e3cf3082a0da998dbf402d384a589488859
http://sourceforge.net/p/libpng/code/ci/77a817bfc298a221e3e623acf73c2a1e726c4ec6
http://sourceforge.net/p/libpng/code/ci/bec9ca9b8aa0cf16d2cde1757379afbe9adbe7d9
--
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=NRgYCIjumF&a=cc_unsubscribe
More information about the mingw
mailing list