Bug#775673: texlive-bin: CVE-2015-0973: overflow in the embedded libpng

To: submit@bugs.debian.org
Subject: Bug#775673: texlive-bin: CVE-2015-0973: overflow in the embedded libpng
From: Raphael Geissert <geissert@debian.org>
Date: Sun, 18 Jan 2015 13:40:24 +0100
Message-id: <[🔎] 3122584.oTkxnHjxVF@eee>
Reply-to: Raphael Geissert <geissert@debian.org>, 775673@bugs.debian.org

Source: texlive-bin
Version: 2014.20140926.35254-5
Severity: grave
Tags: security

Hi,

The embedded copy of libpng is vulnerable to CVE-2015-0973[1], a different 
bug than the one you fixed for #773824.

When fixing this bug please mention the CVE id so that it is easier to do 
some cross-referencing.

Thanks in advance.

[1]http://article.gmane.org/gmane.comp.security.oss.general/15382


Cheers,
-- 
Raphael Geissert - Debian Developer
www.debian.org - get.debian.net

Reply to:

Follow-Ups:
- Bug#775673: texlive-bin: CVE-2015-0973: overflow in the embedded libpng
  - From: Norbert Preining <preining@logic.at>
- Bug#775673: marked as done (texlive-bin: CVE-2015-0973: overflow in the embedded libpng)
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

Prev by Date: Bug#775342: unblock: texlive-bin/2014.20140926.35254-5
Next by Date: Bug#775673: texlive-bin: CVE-2015-0973: overflow in the embedded libpng
Previous by thread: Bug#775342: unblock: texlive-bin/2014.20140926.35254-5
Next by thread: Bug#775673: texlive-bin: CVE-2015-0973: overflow in the embedded libpng
Index(es):
- Date
- Thread