[libpng10] Update to 1.0.55
Paul Howarth
pghmcfc at fedoraproject.org
Thu Jul 7 15:38:24 UTC 2011
commit ec201f1fe9c911a363e43157e1bd8c70c504084a
Author: Paul Howarth <paul at city-fan.org>
Date: Thu Jul 7 16:34:25 2011 +0100
Update to 1.0.55
- New upstream release 1.0.55
- Fixed uninitialized memory read in png_format_buffer()
(CVE-2011-2501, related to CVE-2004-0421)
- Pass "" instead of '\0' to png_default_error() in png_err()
- Check for up->location !PNG_AFTER_IDAT when writing unknown chunks before
IDAT
- Ported bugfix in pngrtran.c from 1.5.3: when expanding a paletted image,
always expand to RGBA if transparency is present
- Check for integer overflow in png_set_rgb_to_gray()
- Check for sCAL chunk too short
- Drop upstreamed patch for CVE-2011-2501
- Add patch to fix build failure due to regression in libpng.sym creation
.gitignore | 2 +-
libpng-1.0.54-CVE-2011-2501.patch | 21 ---------------------
libpng-1.0.55-sym.patch | 24 ++++++++++++++++++++++++
libpng10.spec | 25 +++++++++++++++++++------
sources | 2 +-
5 files changed, 45 insertions(+), 29 deletions(-)
---
diff --git a/.gitignore b/.gitignore
index 9fade54..8b6b33c 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1 +1 @@
-libpng-1.0.54.tar.bz2
+/libpng-1\.0\.[0-9]*\.tar\.bz2
diff --git a/libpng-1.0.55-sym.patch b/libpng-1.0.55-sym.patch
new file mode 100644
index 0000000..cde1507
--- /dev/null
+++ b/libpng-1.0.55-sym.patch
@@ -0,0 +1,24 @@
+--- libpng-1.0.55/Makefile.am.sym 2011-07-07 15:23:22.659538757 +0100
++++ libpng-1.0.55/Makefile.am 2011-07-07 15:24:49.704384813 +0100
+@@ -102,8 +102,7 @@
+
+ libpng.sym: png.h pngconf.h
+ rm -f $@ $@.new
+- $(CPP) @LIBPNG_DEFINES@ $(CPPFLAGS) -DPNG_BUILDSYMS $(srcdir)/png.h $(srcdir)/$@
+- cat $(srcdir)/$@ | \
++ $(CPP) @LIBPNG_DEFINES@ $(CPPFLAGS) -DPNG_BUILDSYMS $(srcdir)/png.h | \
+ $(SED) -n -e \
+ 's|^.*PNG_FUNCTION_EXPORT[ ]*\([$(AN)]*\).*$$|$(SYMBOL_PREFIX)\1|p' \
+ -e 's|^.*PNG_DATA_EXPORT[ ]*\([$(AN)]*\).*$$|$(SYMBOL_PREFIX)\1|p' \
+--- libpng-1.0.55/Makefile.in.sym 2011-07-07 15:23:22.660538755 +0100
++++ libpng-1.0.55/Makefile.in 2011-07-07 15:23:22.664538750 +0100
+@@ -1354,8 +1354,7 @@
+
+ libpng.sym: png.h pngconf.h
+ rm -f $@ $@.new
+- $(CPP) @LIBPNG_DEFINES@ $(CPPFLAGS) -DPNG_BUILDSYMS $(srcdir)/png.h $(srcdir)/$@
+- cat $(srcdir)/$@ | \
++ $(CPP) @LIBPNG_DEFINES@ $(CPPFLAGS) -DPNG_BUILDSYMS $(srcdir)/png.h | \
+ $(SED) -n -e \
+ 's|^.*PNG_FUNCTION_EXPORT[ ]*\([$(AN)]*\).*$$|$(SYMBOL_PREFIX)\1|p' \
+ -e 's|^.*PNG_DATA_EXPORT[ ]*\([$(AN)]*\).*$$|$(SYMBOL_PREFIX)\1|p' \
diff --git a/libpng10.spec b/libpng10.spec
index d0e8370..a96a052 100644
--- a/libpng10.spec
+++ b/libpng10.spec
@@ -1,13 +1,13 @@
Summary: Old version of libpng, needed to run old binaries
Name: libpng10
-Version: 1.0.54
-Release: 3%{?dist}
+Version: 1.0.55
+Release: 1%{?dist}
License: zlib
Group: System Environment/Libraries
URL: http://www.libpng.org/pub/png/libpng.html
Source: ftp://ftp.simplesystems.org/pub/libpng/png/src/libpng-%{version}.tar.bz2
Patch0: libpng-1.0.51-soname.patch
-Patch1: libpng-1.0.54-CVE-2011-2501.patch
+Patch1: libpng-1.0.55-sym.patch
Buildroot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(id -nu)
BuildRequires: zlib-devel
Conflicts: libpng < 2:1.2.0
@@ -39,9 +39,8 @@ libpng10-devel.
# We want an soname of 2.%%{version}
%patch0 -p1 -b .soname
-# Fix 1-byte uninitialized memory reference in png_format_buffer()
-# (CVE-2011-2501, related to CVE-2004-0421)
-%patch1 -p1
+# Fix regression in libpng.sym creation
+%patch1 -p1 -b .sym
%build
%configure \
@@ -116,6 +115,20 @@ rm -rf %{buildroot}
%{_libdir}/pkgconfig/libpng10.pc
%changelog
+* Thu Jul 7 2011 Paul Howarth <paul at city-fan.org> 1.0.55-1
+- update to 1.0.55
+ - fixed uninitialized memory read in png_format_buffer()
+ (CVE-2011-2501, related to CVE-2004-0421)
+ - pass "" instead of '\0' to png_default_error() in png_err()
+ - check for up->location !PNG_AFTER_IDAT when writing unknown chunks before
+ IDAT
+ - ported bugfix in pngrtran.c from 1.5.3: when expanding a paletted image,
+ always expand to RGBA if transparency is present
+ - check for integer overflow in png_set_rgb_to_gray()
+ - check for sCAL chunk too short
+- drop upstreamed patch for CVE-2011-2501
+- add patch to fix build failure due to regression in libpng.sym creation
+
* Wed Jun 29 2011 Paul Howarth <paul at city-fan.org> 1.0.54-3
- fix 1-byte uninitialized memory reference in png_format_buffer()
(CVE-2011-2501, related to CVE-2004-0421)
diff --git a/sources b/sources
index c2f08fe..1e8c945 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-cfd76e484cf37ee7edc1eb9fb13ef9d1 libpng-1.0.54.tar.bz2
+39fee4bc0ebbad5388308199c783719f libpng-1.0.55.tar.bz2
More information about the scm-commits
mailing list