-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2010-10793 2010-07-06 16:23:42 --------------------------------------------------------------------------------
Name : mingw32-libpng Product : Fedora 13 Version : 1.2.44 Release : 1.fc13 URL : http://www.libpng.org/pub/png/ Summary : MinGW Windows Libpng library Description : MinGW Windows Libpng library.
-------------------------------------------------------------------------------- Update Information:
- Update to 1.2.44 - Fixes CVE-2010-1205 and CVE-2010-2249 -------------------------------------------------------------------------------- ChangeLog:
* Sun Jul 4 2010 Erik van Pienbroek epienbro@fedoraproject.org - 1.2.44-1 - Update to 1.2.44 - Fixes CVE-2010-1205 and CVE-2010-2249 (RHBZ #608644 and #608238) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #608644 - CVE-2010-2249 libpng: Memory leak when processing Physical Scale (sCAL) images https://bugzilla.redhat.com/show_bug.cgi?id=608644 [ 2 ] Bug #608238 - CVE-2010-1205 libpng: out-of-bounds memory write https://bugzilla.redhat.com/show_bug.cgi?id=608238 --------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use su -c 'yum update mingw32-libpng' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------