-
Committer:
Bazaar Package Importer
-
Author(s):
Marc Deslauriers
-
Date:
2011-07-26 08:31:17 UTC
-
Revision ID:
james.westby@ubuntu.com-20110726083117-wb0parv74tzhf6j8
Tags: 1.2.44-1ubuntu0.1
* SECURITY UPDATE: denial of service via error message data
- debian/patches/02-CVE-2011-2501.patch: correctly calculate length in
pngerror.c.
- CVE-2011-2501
* SECURITY UPDATE: denial of service and possible arbitrary code
execution via crafted PNG image
- debian/patches/03-CVE-2011-2690.patch: validate coefficients in
pngrtran.c.
- CVE-2011-2690
* SECURITY UPDATE: denial of service and possible arbitrary code
execution via invalid sCAL chunks
- debian/patches/04-CVE-2011-2692.patch: check sCAL chunk length in
pngrutil.c.
- CVE-2011-2692