CVS commit: [pkgsrc-2008Q1] pkgsrc/graphics/png

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: [pkgsrc-2008Q1] pkgsrc/graphics/png
From: Geert Hendrickx <ghen%netbsd.org@localhost>
Date: Wed, 16 Apr 2008 19:32:40 +0000 (UTC)

Module Name:    pkgsrc
Committed By:   ghen
Date:           Wed Apr 16 19:32:40 UTC 2008

Modified Files:
        pkgsrc/graphics/png [pkgsrc-2008Q1]: Makefile distinfo

Log Message:
Pullup ticket 2335 - requested by wiz
security update for png

- pkgsrc/graphics/png/Makefile                          1.102, 1.103
- pkgsrc/graphics/png/distinfo                          1.46, 1.47

   Module Name: pkgsrc
   Committed By:        wiz
   Date:                Sun Apr 13 20:25:15 UTC 2008

   Modified Files:
           pkgsrc/graphics/png: Makefile distinfo

   Log Message:
   Update to 1.2.26:

   version 1.2.26beta01 [February 21, 2008]
     Added missing "(" in pngmem.c.  Bug introduced in libpng-1.2.2/1.0.13

   version 1.2.26beta02 [March 12, 2008]
     Refined error message returned from deflateInit2 in pngwutil.c
     Check IHDR length in png_push_read_chunk() before saving it.

   version 1.2.26beta03 [March 16, 2008]
     Revised contrib/gregbook to handle premature end-of-file and file
       read errors correctly.

   version 1.2.26beta04 [March 18, 2008]
     Free png_ptr->big_row_buf and png_ptr->prev_row before allocating
       new copies in png_read_start_row().  Bug introduced in libpng-1.2.22.

   version 1.2.26beta05 [March 19, 2008]
     Removed extra png_free() added in libpng-1.2.26beta04.

   version 1.2.26beta06 [March 19, 2008]
     Avoid reallocating big_row_buf and prev_row when the size does not 
increase.

   version 1.2.26rc01 [April 2, 2008]
     Ifdef out some code that is unused when interlacing is not supported.
---
   Module Name: pkgsrc
   Committed By:        wiz
   Date:                Tue Apr 15 13:26:14 UTC 2008

   Modified Files:
           pkgsrc/graphics/png: Makefile distinfo

   Log Message:
   Update to 1.2.27beta3, fixing a possible application security problem.
   See http://libpng.sourceforge.net/Advisory-1.2.26.txt for details.

   Changes since 1.2.26:
   version 1.2.27beta01 [April 12, 2008]
     Fixed bug (introduced in libpng-1.0.5h) with handling zero-length
       unknown chunks.
     Added more information about png_set_keep_unknown_chunks() to the
       documetation.
     Reject tRNS chunk with out-of-range samples instead of masking off
       the invalid high bits as done in since libpng-1.2.19beta5.

   version 1.2.27beta02 [April 13, 2008]
     Revised documentation about unknown chunk and user chunk handling.
     Keep tRNS chunk with out-of-range samples and issue a png_warning().

   version 1.2.27beta03 [April 14, 2008]
     Added check for NULL ptr in TURBOC version of png_free_default().
     Removed several unnecessary checks for NULL before calling png_free().
     Revised png_set_tRNS() so that calling it twice removes and invalidates
       the previous call.
     Revised pngtest to check for out-of-range tRNS samples.


To generate a diff of this commit:
cvs rdiff -r1.101 -r1.101.2.1 pkgsrc/graphics/png/Makefile
cvs rdiff -r1.45 -r1.45.2.1 pkgsrc/graphics/png/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: [pkgsrc-2008Q1] pkgsrc/mail/clamav
Next by Date: CVS commit: [pkgsrc-2008Q1] pkgsrc/doc
Previous by Thread: CVS commit: [pkgsrc-2008Q1] pkgsrc/mail/clamav
Next by Thread: CVS commit: [pkgsrc-2008Q1] pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index