packages: libpng/libpng-apng-fix.patch, libpng/libpng.spec - up to 1.5.10 (...

draenog draenog at pld-linux.org
Tue Apr 24 22:12:23 CEST 2012 

Author: draenog                      Date: Tue Apr 24 20:12:23 2012 GMT
Module: packages                      Tag: HEAD
---- Log message:
- up to 1.5.10 (fixes CVE-2011-3048)

---- Files affected:
packages/libpng:
   libpng-apng-fix.patch (1.1 -> 1.2) , libpng.spec (1.192 -> 1.193) 

---- Diffs:

================================================================
Index: packages/libpng/libpng-apng-fix.patch
diff -u packages/libpng/libpng-apng-fix.patch:1.1 packages/libpng/libpng-apng-fix.patch:1.2
--- packages/libpng/libpng-apng-fix.patch:1.1	Tue Dec 20 18:15:56 2011
+++ packages/libpng/libpng-apng-fix.patch	Tue Apr 24 22:12:18 2012
@@ -1,9 +1,10 @@
 --- libpng-1.5.7/scripts/symbols.def.orig	2011-12-15 16:45:34.000000000 +0100
 +++ libpng-1.5.7/scripts/symbols.def	2011-12-18 19:44:57.326436207 +0100
-@@ -239,3 +239,24 @@
+@@ -239,4 +239,25 @@
   png_get_cHRM_XYZ_fixed @231
   png_set_cHRM_XYZ @232
   png_set_cHRM_XYZ_fixed @233
+  png_set_check_for_invalid_index @234
 +;missing warning
 + png_write_frame_head @1001
 + png_write_frame_tail @1002
@@ -31,7 +32,7 @@
   * scripts/symbols.def as well.
   */
  #ifdef PNG_EXPORT_LAST_ORDINAL
--  PNG_EXPORT_LAST_ORDINAL(233);
+-  PNG_EXPORT_LAST_ORDINAL(234);
 +  PNG_EXPORT_LAST_ORDINAL(1020);
  #endif
  

================================================================
Index: packages/libpng/libpng.spec
diff -u packages/libpng/libpng.spec:1.192 packages/libpng/libpng.spec:1.193
--- packages/libpng/libpng.spec:1.192	Sun Feb 19 11:13:27 2012
+++ packages/libpng/libpng.spec	Tue Apr 24 22:12:18 2012
@@ -12,16 +12,16 @@
 Summary(pt_BR.UTF-8):	Biblioteca PNG
 Summary(tr.UTF-8):	PNG kitaplığı
 Name:		libpng
-Version:	1.5.9
+Version:	1.5.10
 Release:	1
 Epoch:		2
 License:	distributable
 Group:		Libraries
 Source0:	http://downloads.sourceforge.net/libpng/%{name}-%{version}.tar.xz
-# Source0-md5:	05d9ab3705c34954c0032b71318b678a
+# Source0-md5:	9c2ac3c3a31de2ab867875718f8de18e
 Patch0:		%{name}-pngminus.patch
 Patch1:		http://downloads.sourceforge.net/libpng-apng/%{name}-%{version}-apng.patch.gz
-# Patch1-md5:	268f7db97b292d5f14a24ea7940f6f1c
+# Patch1-md5:	88517ab0e9c0be2590800116e2b50c8d
 Patch2:		%{name}-apng-fix.patch
 URL:		http://www.libpng.org/pub/png/libpng.html
 BuildRequires:	rpmbuild(macros) >= 1.213
@@ -230,6 +230,9 @@
 All persons listed below can be reached at <cvs_login>@pld-linux.org
 
 $Log$
+Revision 1.193  2012/04/24 20:12:18  draenog
+- up to 1.5.10 (fixes CVE-2011-3048)
+
 Revision 1.192  2012/02/19 10:13:27  adamg
 - updated to 1.5.9 (solves CVE-2011-3026)
 
================================================================

---- CVS-web:
    http://cvs.pld-linux.org/packages/libpng/libpng-apng-fix.patch?r1=1.1&r2=1.2
    http://cvs.pld-linux.org/packages/libpng/libpng.spec?r1=1.192&r2=1.193

More information about the pld-cvs-commit mailing list