-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Thu, 16 Feb 2012 09:18:13 +1100 Source: libpng Binary: libpng15-15 libpng-dev libpng15-15-udeb Architecture: source mipsel Version: 1.5.8-1 Distribution: experimental Urgency: high Maintainer: Anibal Monsalve Salazar <anibal@debian.org> Changed-By: Anibal Monsalve Salazar <anibal@debian.org> Description: libpng-dev - PNG library - development libpng15-15 - PNG library - runtime libpng15-15-udeb - PNG library - minimal runtime library (udeb) Closes: 660026 Changes: libpng (1.5.8-1) experimental; urgency=high . * New upstream release. Fix a one-byte (stack) buffer-overrun bug in png_formatted_warning(), which could lead to crashes (denial of service) or, conceivably, execution of hostile code. This vulnerability has been assigned ID CVE-2011-3464. * Check for both truncation (64-bit platforms) and integer overflow Fix CVE-2011-3026 Add 02-660026-CVE-2011-3026.patch Closes: 660026 Checksums-Sha1: 4bce8ed1cb6a7fbdcd33f9a4052b7d2ae7c203d4 1916 libpng_1.5.8-1.dsc 46fdc2ab3fef9cf0949b1d7374cda9ea37ed5419 865525 libpng_1.5.8.orig.tar.bz2 d3142378961db01e827e949a2b6645a0122d065d 16204 libpng_1.5.8-1.debian.tar.bz2 15893bcad0f17004e7765403168863c16db69342 230034 libpng15-15_1.5.8-1_mipsel.deb 1455b4f624b3f92438548bce915082a67cbd6282 313846 libpng-dev_1.5.8-1_mipsel.deb 70a880046bf5eeec4176a7e01463005a5a3c5f4d 80492 libpng15-15-udeb_1.5.8-1_mipsel.udeb Checksums-Sha256: 21b9745db62e47124f77d5ffee3bb8536acf56bc793db42d0b80524acd972f9d 1916 libpng_1.5.8-1.dsc 4702a0fc1a72c51f8370fc1fa129425913495173e9a87a965170eaa3d81bbf63 865525 libpng_1.5.8.orig.tar.bz2 0124135dee8f0fc69a45a1fd7cfabc020e62ff83c7d41c66af2fc6566d09bf32 16204 libpng_1.5.8-1.debian.tar.bz2 d4328e43eee20c1817eb9ede79d22506d2a10c6951c124ca076ac55c35fba8df 230034 libpng15-15_1.5.8-1_mipsel.deb 6b669e28b8d6d29243d569d4994ab67ee5457e71076f06ff0de89ca7bfa49cfc 313846 libpng-dev_1.5.8-1_mipsel.deb e2e9dd3792d5b55293ae4cf9fc33c446ebf7350cd180a2f14fbcfd7aaf9f1311 80492 libpng15-15-udeb_1.5.8-1_mipsel.udeb Files: 3972d4f8115513c9234c783be34b08a8 1916 libs optional libpng_1.5.8-1.dsc 3b0aac862a247eeabecca44674686dfc 865525 libs optional libpng_1.5.8.orig.tar.bz2 5596e3a2dcccdff34149c665b1391772 16204 libs optional libpng_1.5.8-1.debian.tar.bz2 159b8e0fdff6b6b97674d10c5d4f11ba 230034 libs optional libpng15-15_1.5.8-1_mipsel.deb 4f9def3e720695cf8510fe7cc6c5afee 313846 libdevel optional libpng-dev_1.5.8-1_mipsel.deb 18ffb23ed4ecb621faa793962d03f5c2 80492 debian-installer extra libpng15-15-udeb_1.5.8-1_mipsel.udeb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQIcBAEBCAAGBQJPPDIUAAoJEHxWrP6UeJfYD3QP/iEw/hck0rzV+qhQXHnH3Lxw KcmBNxp4/DfAumbxCvoii2FBv1SKGAhTDM9MJKXvd5/X9jNWj8ylZ2qPGPnkC8eG 2NWEH1QMtv88LVYnxtk0FDjqZjWJJ0yexnU7SS8IPAFeVVnEJe44qQxV4ynfix2/ ja76L/CLrVRsY8n0sGZladaH5U8elGCXBLPGFGt3xNf66+y+jSB3fJdNSH44yINX DbzQVoyVBo3qfKZ09iShurIkXCSHZ+GfIojYBwuxl433o8CveRMogD9nZrRI5oGz kkomcOf3d5uRAALaRmS7SG9fDc20C+PF4T1Kwio63kzzy6NJQiylP4yHR4JoWsgm C4+A74R7rSQkz7G3KdQ1Nlyj6/Q77PDxsa7nA9U5yBQCn2vaABV5AJ4n1fSLWyAr OdjJta2TonjNEBux9KujiAEiOZJdR2R2aZMCRb0A2zEik9EoAUgUtEkBizohAlrl Y1ghxVqIDLDvPwBHr5P+gFOkwEXy8lEBM00eHOUCk4wqMKv8f0eVGKsUrgLuNsdt /5IPpe0hWbbNuwk0BCRyKWwc0JIREOc3kj7UysVJ2UR4OsbsDQpfKKOREQxH2EZB NWvd/GMsN6VQChrO9GuDxrN6ns2yffZCzvY7MT9Z/dQhsqiKs9D/gW9wA8wQC2lr 4SfynQrV4gKdaitYFmBr =I8Yn -----END PGP SIGNATURE----- Accepted: libpng-dev_1.5.8-1_mipsel.deb to main/libp/libpng/libpng-dev_1.5.8-1_mipsel.deb libpng15-15-udeb_1.5.8-1_mipsel.udeb to main/libp/libpng/libpng15-15-udeb_1.5.8-1_mipsel.udeb libpng15-15_1.5.8-1_mipsel.deb to main/libp/libpng/libpng15-15_1.5.8-1_mipsel.deb libpng_1.5.8-1.debian.tar.bz2 to main/libp/libpng/libpng_1.5.8-1.debian.tar.bz2 libpng_1.5.8-1.dsc to main/libp/libpng/libpng_1.5.8-1.dsc libpng_1.5.8.orig.tar.bz2 to main/libp/libpng/libpng_1.5.8.orig.tar.bz2
