[Bug 1086514] CVE-2013-7353 libpng: integer overflow leading to a heap-based buffer overflow in png_set_unknown_chunks()
bugzilla at redhat.com
bugzilla at redhat.com
Fri Apr 11 09:15:24 UTC 2014
https://bugzilla.redhat.com/show_bug.cgi?id=1086514
--- Comment #1 from Huzaifa S. Sidhpurwala <huzaifas at redhat.com> ---
This issue was addressed by the following upstream commit:
http://sourceforge.net/p/libpng/code/ci/9dd2bfafe50de0e3204be81a90303760d26a697c
and was later enhanced by the following commit:
http://sourceforge.net/p/libpng/code/ci/2414bd99d8c76f92ca9272f1b1b1eff55709298a
Upstream released libpng-1.6.0 and libpng-1.5.14 to address this issue.
--
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=Akp4fV1qa2&a=cc_unsubscribe
More information about the mingw
mailing list