On Thu, May 17, 2007 at 09:20:35PM +0200, Moritz Muehlenhoff wrote: >Aníbal Monsalve Salazar wrote: >>[team@security.debian.org in Bcc list] >> >>On Thu, May 17, 2007 at 08:15:42AM +0200, Frans Pop wrote: >>>On Thursday 17 May 2007 04:17, Aníbal Monsalve Salazar wrote: >>>>Please consider to update libpng in stable >>> >>>If this is a security issue, why is the update not being handled >>>through the security team? >> >>I just sent the message to team@security.debian.org and will wait >>for their instructions. > >It's only a crash, no potential for code injection. It doesn't >warrant a DSA, but feel free to update it through a stable update. > >Cheers, > Moritz Frans, lenny RM and stable RM, Please approve/hint libpng_1.2.15~beta5-2 Changes: libpng-1.2.15~beta5/debian/changelog | 11 +++++++++++ pngrutil.c | 3 +++ 2 files changed, 14 insertions(+) interdiff -z -p1 cache/libpng/libpng_1.2.15~beta5-1.diff.gz cache/libpng/libpng_1.2.15~beta5-2.diff.gz diff -u libpng-1.2.15~beta5/debian/changelog libpng-1.2.15~beta5/debian/changelog --- libpng-1.2.15~beta5/debian/changelog +++ libpng-1.2.15~beta5/debian/changelog @@ -1,3 +1,14 @@ +libpng (1.2.15~beta5-2) unstable; urgency=high + + * It seems that a grayscale image with a malformed (bad CRC) tRNS + chunk will crash libpng and mozilla. Closes: #424729. + - CVE-2007-2445 + http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2007-2445 + - CERT Vulnerability Note VU#684664 + http://www.kb.cert.org/vuls/id/684664 + + -- Anibal Monsalve Salazar <anibal@debian.org> Wed, 09 May 2007 17:34:02 +1000 + libpng (1.2.15~beta5-1) unstable; urgency=low * Applied legacy_symbols.patch. only in patch2: unchanged: --- libpng-1.2.15~beta5.orig/pngrutil.c +++ libpng-1.2.15~beta5/pngrutil.c @@ -1314,7 +1314,10 @@ } if (png_crc_finish(png_ptr, 0)) + { + png_ptr->num_trans = 0; return; + } png_set_tRNS(png_ptr, info_ptr, readbuf, png_ptr->num_trans, &(png_ptr->trans_values)); Aníbal Monsalve Salazar -- http://v7w.com/anibal
Attachment:
signature.asc
Description: Digital signature