——————————————————————————–
Fedora Update Notification
FEDORA-2014-4564
2014-03-31 00:50:46
——————————————————————————–
Name : mingw-libpng
Product : Fedora 20
Version : 1.6.10
Release : 1.fc20
URL : http://www.libpng.org/pub/png/
Summary : MinGW Windows Libpng library
Description :
MinGW Windows Libpng library.
——————————————————————————–
Update Information:
libpng 1.6.10 bug fix release.
——————————————————————————–
ChangeLog:
* Sat Mar 29 2014 Kalev Lember <kalevlember@gmail.com> – 1.6.10-1
– Update to 1.6.10
* Wed Nov 20 2013 Erik van Pienbroek <epienbro@fedoraproject.org> – 1.6.7-1
– Update to 1.6.7
——————————————————————————–
References:
[ 1 ] Bug #1045561 – CVE-2013-6954 libpng: unhandled zero-length PLTE chunk or NULL palette
https://bugzilla.redhat.com/show_bug.cgi?id=1045561
[ 2 ] Bug #1070985 – CVE-2014-0333 libpng: denial of service via png_push_read_chunk()
https://bugzilla.redhat.com/show_bug.cgi?id=1070985
——————————————————————————–
This update can be installed with the “yum” update program. Use
su -c ‘yum update mingw-libpng’ at the command line.
For more information, refer to “Managing Software with yum”,
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce