Package: libpng / 1.2.49-1+deb7u2
Metadata
Package | Version | Patches format |
---|---|---|
libpng | 1.2.49-1+deb7u2 | 3.0 (quilt) |
Patch series
view the series filePatch | File delta | Description |
---|---|---|
01 legacy.patch | (download) |
libpng-1.2.49.txt |
5 3 + 2 - 0 ! |
--- |
CVE 2015 7981.patch | (download) |
png.c |
7 4 + 3 - 0 ! |
added a safety check in png_set_time() |
Prevent writing over length PLTE chunk Cosm.patch | (download) |
pngrutil.c |
13 12 + 1 - 0 ! |
multiple buffer overflows in the png_set_plte and png_get_plte functions . Prevent writing over-length PLTE chunk. Silently truncate over-length PLTE chunk while reading . CVE-2015-8126 |
Fixed new bug with CRC error after reading .patch | (download) |
pngrutil.c |
2 1 + 1 - 0 ! |
fixed new bug with crc error after reading an over-length palette |
CVE 2015 8472/0001 Avoid potential pointer overflow in png_han.patch | (download) |
pngrutil.c |
10 5 + 5 - 0 ! |
[patch] [libpng12] avoid potential pointer overflow in png_handle_iTXt(), png_handle_zTXt(), png_handle_sPLT(), and png_handle_pCAL() (Bug report by John Regehr). |
CVE 2015 8472/0002 Use unsigned constants in buffer length com.patch | (download) |
pngrutil.c |
11 6 + 5 - 0 ! |
[patch] [libpng12] use unsigned constants in buffer length comparisons |
CVE 2015 8472/0003 Fixed bug recently introduced in png_set_PL.patch | (download) |
pngset.c |
4 2 + 2 - 0 ! |
[patch] [libpng12] fixed bug recently introduced in png_set_plte() that uses png_ptr not info_ptr. |
CVE 2015 8540.patch | (download) |
pngwutil.c |
2 1 + 1 - 0 ! |
cve-2015-8540: underflow read in png_check_keyword() |