[libpng10] Add new CVE references: CVE-2011-2690/CVE-2011-2691/CVE-2011-2692
Paul Howarth
pghmcfc at fedoraproject.org
Thu Jul 14 09:50:20 UTC 2011
commit c49cf987a5b968a94ac713c876e01f61d99a836f
Author: Paul Howarth <paul at city-fan.org>
Date: Thu Jul 14 10:49:55 2011 +0100
Add new CVE references: CVE-2011-2690/CVE-2011-2691/CVE-2011-2692
libpng10.spec | 6 +++---
1 files changed, 3 insertions(+), 3 deletions(-)
---
diff --git a/libpng10.spec b/libpng10.spec
index 86e9a2a..5ad2679 100644
--- a/libpng10.spec
+++ b/libpng10.spec
@@ -121,13 +121,13 @@ rm -rf %{buildroot}
- update to 1.0.55
- fixed uninitialized memory read in png_format_buffer()
(CVE-2011-2501, related to CVE-2004-0421)
- - pass "" instead of '\0' to png_default_error() in png_err()
+ - pass "" instead of '\0' to png_default_error() in png_err() (CVE-2011-2691)
- check for up->location !PNG_AFTER_IDAT when writing unknown chunks before
IDAT
- ported bugfix in pngrtran.c from 1.5.3: when expanding a paletted image,
always expand to RGBA if transparency is present
- - check for integer overflow in png_set_rgb_to_gray()
- - check for sCAL chunk too short
+ - check for integer overflow in png_set_rgb_to_gray() (CVE-2011-2690)
+ - check for sCAL chunk too short (CVE-2011-2692)
- drop upstreamed patch for CVE-2011-2501
- add patch to fix build failure due to regression in libpng.sym creation
More information about the scm-commits
mailing list