[SECURITY] Fedora 20 Update: mingw-libpng-1.6.10-1.fc20
updates at fedoraproject.org
updates at fedoraproject.org
Wed Apr 2 09:27:10 UTC 2014
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-4564
2014-03-31 00:50:46
--------------------------------------------------------------------------------
Name : mingw-libpng
Product : Fedora 20
Version : 1.6.10
Release : 1.fc20
URL : http://www.libpng.org/pub/png/
Summary : MinGW Windows Libpng library
Description :
MinGW Windows Libpng library.
--------------------------------------------------------------------------------
Update Information:
libpng 1.6.10 bug fix release.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Mar 29 2014 Kalev Lember <kalevlember at gmail.com> - 1.6.10-1
- Update to 1.6.10
* Wed Nov 20 2013 Erik van Pienbroek <epienbro at fedoraproject.org> - 1.6.7-1
- Update to 1.6.7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1045561 - CVE-2013-6954 libpng: unhandled zero-length PLTE chunk or NULL palette
https://bugzilla.redhat.com/show_bug.cgi?id=1045561
[ 2 ] Bug #1070985 - CVE-2014-0333 libpng: denial of service via png_push_read_chunk()
https://bugzilla.redhat.com/show_bug.cgi?id=1070985
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update mingw-libpng' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list