rpms/libpng10/devel .cvsignore, 1.28, 1.29 libpng10.spec, 1.40, 1.41 sources, 1.28, 1.29

Paul Howarth pghmcfc at fedoraproject.org
Fri Jul 2 12:01:37 UTC 2010 

Author: pghmcfc

Update of /cvs/pkgs/rpms/libpng10/devel
In directory cvs01.phx2.fedoraproject.org:/tmp/cvs-serv32516/devel

Modified Files:
	.cvsignore libpng10.spec sources 
Log Message:
* Fri Jul  2 2010 Paul Howarth <paul at city-fan.org> 1.0.54-1
- update to 1.0.54
  - fixes CVE-2010-1205 (out-of-bounds write to memory)
  - fixes CVE-2010-2249 (memory leak with images having malformed sCAL chunks)



Index: .cvsignore
===================================================================
RCS file: /cvs/pkgs/rpms/libpng10/devel/.cvsignore,v
retrieving revision 1.28
retrieving revision 1.29
diff -u -p -r1.28 -r1.29
--- .cvsignore	25 Feb 2010 15:23:35 -0000	1.28
+++ .cvsignore	2 Jul 2010 12:01:36 -0000	1.29
@@ -1 +1 @@
-libpng-1.0.53.tar.bz2
+libpng-1.0.54.tar.bz2


Index: libpng10.spec
===================================================================
RCS file: /cvs/pkgs/rpms/libpng10/devel/libpng10.spec,v
retrieving revision 1.40
retrieving revision 1.41
diff -u -p -r1.40 -r1.41
--- libpng10.spec	3 Mar 2010 11:27:52 -0000	1.40
+++ libpng10.spec	2 Jul 2010 12:01:37 -0000	1.41
@@ -1,6 +1,6 @@
 Summary:	Old version of libpng, needed to run old binaries
 Name:		libpng10
-Version:	1.0.53
+Version:	1.0.54
 Release:	1%{?dist}
 License:	zlib
 Group:		System Environment/Libraries
@@ -111,6 +111,11 @@ libpng10-devel.
 %{_libdir}/pkgconfig/libpng10.pc
 
 %changelog
+* Fri Jul  2 2010 Paul Howarth <paul at city-fan.org> 1.0.54-1
+- update to 1.0.54
+  - fixes CVE-2010-1205 (out-of-bounds write to memory)
+  - fixes CVE-2010-2249 (memory leak with images having malformed sCAL chunks)
+
 * Thu Feb 25 2010 Paul Howarth <paul at city-fan.org> 1.0.53-1
 - update to 1.0.53
   - fixes CVE-2010-0205 (libpng stalls on highly compressed ancillary chunks)


Index: sources
===================================================================
RCS file: /cvs/pkgs/rpms/libpng10/devel/sources,v
retrieving revision 1.28
retrieving revision 1.29
diff -u -p -r1.28 -r1.29
--- sources	25 Feb 2010 15:23:36 -0000	1.28
+++ sources	2 Jul 2010 12:01:37 -0000	1.29
@@ -1 +1 @@
-98b7318e4ae339b8baeac66e0e1377d9  libpng-1.0.53.tar.bz2
+cfd76e484cf37ee7edc1eb9fb13ef9d1  libpng-1.0.54.tar.bz2

More information about the scm-commits mailing list