-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - --------------------------------------------------------------------- Fedora Test Update Notification FEDORA-2004-1550 Bugzilla https://bugzilla.fedora.us/show_bug.cgi?id=1550 2004-06-16 - --------------------------------------------------------------------- Name : libpng10 Version 9 : 1.0.13-11.1.legacy Summary : Old version of libpng, needed to run old binaries. Description : The libpng10 package contains an old version of libpng, a library of functions for creating and manipulating PNG (Portable Network Graphics) image format files. This package is needed if you want to run binaries that were linked dynamically with libpng 1.0.x. - --------------------------------------------------------------------- Update Information: CAN-2002-1363: Portable Network Graphics (PNG) libraries (1) libpng 1.2.1 and earlier, and (2) libpng3 1.2.5 and earlier, do not correctly calculate offsets, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a buffer overflow attack on the row buffers. - --------------------------------------------------------------------- Changelog: 9: * Tue Jun 08 2004 Marc Deslauriers <marcdeslauriers@xxxxxxxxxxxx> 1.0.13-11.1.legacy - - Added long lost patch for CAN-2002-1363 * Mon Apr 19 2004 Matthias Clasen <mclasen@xxxxxxxxxx> - - fix a possible out-of-bounds read in the error message handler. #121229 * Tue Mar 02 2004 Elliot Lee <sopwith@xxxxxxxxxx> - - rebuilt - --------------------------------------------------------------------- This update can be downloaded from: http://download.fedoralegacy.org/redhat/ 147dea7dbd723e9260acc770ce93aa7ab68c277c 9/updates-testing/SRPMS/libpng10-1.0.13-11.1.legacy.src.rpm 704af3eb2cdd53c6860cae248c56ce85c410c729 9/updates-testing/i386/libpng10-1.0.13-11.1.legacy.i386.rpm Please note that this update is also available via yum and apt through the updates-testing channel. Many people find this an easier way to apply updates. - --------------------------------------------------------------------- - -- Jesse Keating RHCE (http://geek.j2solutions.net) Fedora Legacy Team (http://www.fedoralegacy.org) GPG Public Key (http://geek.j2solutions.net/jkeating.j2solutions.pub) Was I helpful? Let others know: http://svcs.affero.net/rm.php?r=jkeating -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFA0RTD4v2HLvE71NURArm+AJ9Qo/1CzevtzH0Do9ULx52fwMW26wCeL9Cs f2nKJnhHFk0gkIA0IPqaNXc= =laAc -----END PGP SIGNATURE----- -- fedora-legacy-list@xxxxxxxxxx http://www.redhat.com/mailman/listinfo/fedora-legacy-list
