projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f2cc2a3) | patch
libpng: security bump to version 1.6.20
authorGustavo Zacarias <gustavo@zacarias.com.ar>
Thu, 3 Dec 2015 21:48:07 +0000 (18:48 -0300)
committerPeter Korsgaard <peter@korsgaard.com>
Fri, 4 Dec 2015 20:46:34 +0000 (21:46 +0100)
commit371e2f7f3c2f66eadba91e5d33c32f462f9691b7
treea8833b6f3c26832883f5dc86295b02b60d6372f4tree
parentf2cc2a3eef7f0b4db23805d23194c0bbea3ad96bcommit | diff
libpng: security bump to version 1.6.20

Fixes:
CVE-2015-8126 - incorrect implementation of png_set_PLTE() that uses
png_ptr not info_ptr, that left png_set_PLTE() open to this vuln.

(fix in previous release was incomplete)

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/libpng/libpng.hash diff | blob | history
package/libpng/libpng.mk diff | blob | history