[libpng15] When png_set_filler is used to strip a filler channel during write,

the code prior to 1.5 would ignore the case where the output required an alpha channel or when the output was a palettized PNG. In libpng-1.5 the ignorance was lost and libpng proceeded to strip the channel resulting in a bad (potential memory overwrite) failure later. This reverts the behavior to the pre-1.5 state but issues a warning. libpng-1.6 is expected to issue an error on the erroneous png_set_filler call.
2025-07-10 18:04:09 +02:00 · 2012-08-08 22:13:25 -05:00
parent 1a2606069c
commit 0054b566f4
3 changed files with 36 additions and 7 deletions
--- a/12
+++ b/12
@@ -1,5 +1,5 @@

-Libpng 1.5.13beta02 - August 8, 2012
+Libpng 1.5.13beta02 - August 9, 2012

 This is not intended to be a public release.  It will be replaced
 within a few weeks by a public version or by another test version.
@@ -32,7 +32,15 @@ Version 1.5.13beta01 [August 8, 2012]
  Revised PNG_FP_EXPORT and PNG_FIXED_EXPORT macros to avoid generating
    lone semicolons (patch ported from libpng-1.6.0beta11).

-Version 1.5.13beta02 [August 8, 2012]
+Version 1.5.13beta02 [August 9, 2012]
+  Corrected handling of the image array and the row_pointers array in example.c
+  When png_set_filler is used to strip a filler channel during write, the
+    code prior to 1.5 would ignore the case where the output required an
+    alpha channel or when the output was a palettized PNG.  In libpng-1.5 the
+    ignorance was lost and libpng proceeded to strip the channel resulting
+    in a bad (potential memory overwrite) failure later.  This reverts
+    the behavior to the pre-1.5 state but issues a warning. libpng-1.6 is
+    expected to issue an error on the erroneous png_set_filler call.

 Send comments/corrections/commendations to png-mng-implement at lists.sf.net:
 (subscription required; visit