mewin/libpng
1
0
Fork 0
mirror of https://git.code.sf.net/p/libpng/code.git synced 2025-07-10 18:04:09 +02:00
Code Issues Projects Releases Wiki Activity

[libpng17] Add recent CVE numbers to CHANGES and ANNOUNCE.

Browse Source
This commit is contained in:
Glenn Randers-Pehrson 2015-01-10 19:12:46 -06:00
parent d4ac328617
commit e8213aa68f
2 changed files with 9 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
ANNOUNCE
View File

@ -1,5 +1,5 @@
Libpng 1.7.0beta47 - January 8, 2015
Libpng 1.7.0beta47 - January 11, 2015
This is not intended to be a public release. It will be replaced
within a few weeks by a public version or by another test version.
@ -667,8 +667,9 @@ Version 1.7.0beta43 [December 18, 2014]
Version 1.7.0beta44 [December 23, 2014]
Restored a test on width that was removed from png.c at libpng-1.6.9
(Bug report by Alex Eubanks).
Fixed an overflow in png_combine_row with very wide interlaced images.
(Bug report by Alex Eubanks, CVE-2015-0973).
Fixed an overflow in png_combine_row() with very wide interlaced images
(Bug report and fix by John Bowler, CVE-2014-9495).
Corrected the width limit calculation in png_check_IHDR().
Removed extraneous handling of PNG_SAFE_LIMITS_SUPPORTED from pngconf.h
@ -687,7 +688,7 @@ Version 1.7.0beta46 [January 2, 2015]
Fixed byte order in 2-byte filler, in png_do_read_filler().
Allow user to call png_get_IHDR() with NULL arguments (Reuben Hawkins).
Version 1.7.0beta47 [January 8, 2015]
Version 1.7.0beta47 [January 11, 2015]
Made the check for out-of-range values in png_set_tRNS() work on
16-bit platforms.

7
CHANGES
View File

@ -4956,8 +4956,9 @@ Version 1.7.0beta43 [December 18, 2014]
Version 1.7.0beta44 [December 23, 2014]
Restored a test on width that was removed from png.c at libpng-1.6.9
(Bug report by Alex Eubanks, CVE-2014-9495).
Fixed an overflow in png_combine_row with very wide interlaced images.
(Bug report by Alex Eubanks, CVE-2015-0973).
Fixed an overflow in png_combine_row() with very wide interlaced images
(Bug report and fix by John Bowler, CVE-2014-9475).
Corrected the width limit calculation in png_check_IHDR().
Removed extraneous handling of PNG_SAFE_LIMITS_SUPPORTED from pngconf.h
@ -4976,7 +4977,7 @@ Version 1.7.0beta46 [January 2, 2015]
Fixed byte order in 2-byte filler, in png_do_read_filler().
Allow user to call png_get_IHDR() with NULL arguments (Reuben Hawkins).
Version 1.7.0beta47 [January 8, 2015]
Version 1.7.0beta47 [January 11, 2015]
Made the check for out-of-range values in png_set_tRNS() work on
16-bit platforms.