——————————————————————————–
Fedora Update Notification
FEDORA-2015-ac8100927a
2016-01-02 19:00:01.936204
——————————————————————————–
Name : libpng12
Product : Fedora 22
Version : 1.2.56
Release : 1.fc22
URL : http://www.libpng.org/pub/png/
Summary : Old version of libpng, needed to run old binaries
Description :
The libpng12 package provides libpng 1.2, an older version of the libpng
library for manipulating PNG (Portable Network Graphics) image format files.
This version should be used only if you are unable to use the current
version of libpng.
——————————————————————————–
Update Information:
Latest upstream release, includes fixes for security vulnerabilities:
CVE-2015-7981, CVE-2015-8126, CVE-2015-8540
——————————————————————————–
References:
[ 1 ] Bug #1291312 – CVE-2015-8540 libpng: underflow read in png_check_keyword()
https://bugzilla.redhat.com/show_bug.cgi?id=1291312
[ 2 ] Bug #1281756 – CVE-2015-8126 CVE-2015-8472 libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions
https://bugzilla.redhat.com/show_bug.cgi?id=1281756
[ 3 ] Bug #1276416 – CVE-2015-7981 libpng: Out-of-bounds read in png_convert_to_rfc1123
https://bugzilla.redhat.com/show_bug.cgi?id=1276416
——————————————————————————–
This update can be installed with the “yum” update program. Use
su -c ‘yum update libpng12’ at the command line.
For more information, refer to “Managing Software with yum”,
available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
——————————————————————————–
Fedora Update Notification
FEDORA-2015-39499d9af8
2016-01-02 19:00:53.591455
——————————————————————————–
Name : libpng12
Product : Fedora 23
Version : 1.2.56
Release : 1.fc23
URL : http://www.libpng.org/pub/png/
Summary : Old version of libpng, needed to run old binaries
Description :
The libpng12 package provides libpng 1.2, an older version of the libpng
library for manipulating PNG (Portable Network Graphics) image format files.
This version should be used only if you are unable to use the current
version of libpng.
——————————————————————————–
Update Information:
Latest upstream release, includes fixes for security vulnerabilities:
CVE-2015-7981, CVE-2015-8126, CVE-2015-8540
——————————————————————————–
References:
[ 1 ] Bug #1276416 – CVE-2015-7981 libpng: Out-of-bounds read in png_convert_to_rfc1123
https://bugzilla.redhat.com/show_bug.cgi?id=1276416
[ 2 ] Bug #1281756 – CVE-2015-8126 CVE-2015-8472 libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions
https://bugzilla.redhat.com/show_bug.cgi?id=1281756
[ 3 ] Bug #1291312 – CVE-2015-8540 libpng: underflow read in png_check_keyword()
https://bugzilla.redhat.com/show_bug.cgi?id=1291312
——————————————————————————–
This update can be installed with the “yum” update program. Use
su -c ‘yum update libpng12’ at the command line.
For more information, refer to “Managing Software with yum”,
available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce