On Thu, May 17, 2007 at 09:20:35PM +0200, Moritz Muehlenhoff wrote:
>Aníbal Monsalve Salazar wrote:
>>[team@security.debian.org in Bcc list]
>>
>>On Thu, May 17, 2007 at 08:15:42AM +0200, Frans Pop wrote:
>>>On Thursday 17 May 2007 04:17, Aníbal Monsalve Salazar wrote:
>>>>Please consider to update libpng in stable
>>>
>>>If this is a security issue, why is the update not being handled
>>>through the security team?
>>
>>I just sent the message to team@security.debian.org and will wait
>>for their instructions.
>
>It's only a crash, no potential for code injection. It doesn't
>warrant a DSA, but feel free to update it through a stable update.
>
>Cheers,
> Moritz
Frans, lenny RM and stable RM,
Please approve/hint libpng_1.2.15~beta5-2
Changes:
libpng-1.2.15~beta5/debian/changelog | 11 +++++++++++
pngrutil.c | 3 +++
2 files changed, 14 insertions(+)
interdiff -z -p1 cache/libpng/libpng_1.2.15~beta5-1.diff.gz cache/libpng/libpng_1.2.15~beta5-2.diff.gz
diff -u libpng-1.2.15~beta5/debian/changelog libpng-1.2.15~beta5/debian/changelog
--- libpng-1.2.15~beta5/debian/changelog
+++ libpng-1.2.15~beta5/debian/changelog
@@ -1,3 +1,14 @@
+libpng (1.2.15~beta5-2) unstable; urgency=high
+
+ * It seems that a grayscale image with a malformed (bad CRC) tRNS
+ chunk will crash libpng and mozilla. Closes: #424729.
+ - CVE-2007-2445
+ http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2007-2445
+ - CERT Vulnerability Note VU#684664
+ http://www.kb.cert.org/vuls/id/684664
+
+ -- Anibal Monsalve Salazar <anibal@debian.org> Wed, 09 May 2007 17:34:02 +1000
+
libpng (1.2.15~beta5-1) unstable; urgency=low
* Applied legacy_symbols.patch.
only in patch2:
unchanged:
--- libpng-1.2.15~beta5.orig/pngrutil.c
+++ libpng-1.2.15~beta5/pngrutil.c
@@ -1314,7 +1314,10 @@
}
if (png_crc_finish(png_ptr, 0))
+ {
+ png_ptr->num_trans = 0;
return;
+ }
png_set_tRNS(png_ptr, info_ptr, readbuf, png_ptr->num_trans,
&(png_ptr->trans_values));
Aníbal Monsalve Salazar
--
http://v7w.com/anibal
Attachment:
signature.asc
Description: Digital signature