Overview
libpng14-14: security update

This update of libpng14-14 fixes:
- CVE-2011-2501: CVSS v2 Base Score: 5.0
(AV:N/AC:L/Au:N/C:N/I:N/A:P): Design Error
(CWE-DesignError)
- CVE-2011-2690: CVSS v2 Base Score: 5.1
(AV:N/AC:H/Au:N/C:P/I:P/A:P): Buffer Errors (CWE-119)
- CVE-2011-2691: CVSS v2 Base Score: 4.3
(AV:N/AC:M/Au:N/C:N/I:N/A:P): Other (CWE-Other)
- CVE-2011-2692: CVSS v2 Base Score: 5.0
(AV:N/AC:M/Au:N/C:N/I:N/A:P): Buffer Errors (CWE-119)

Fixed bugs
bnc#702578
VUL-1: libpng regression DoS
bnc#706389
VUL-0: libpng memory corruption when handling empty sCAL chunks
bnc#706388
VUL-0: libpng crash in png_default_error due to use of NULL Pointer
bnc#706387
VUL-0: libpng buffer overwrite in png_rgb_to_gray
CVE#CVE-2011-2692
CVE#CVE-2011-2690
CVE#CVE-2011-2691
CVE#CVE-2009-5063
CVE#CVE-2011-2501
CVE#CVE-2008-6218
Selected Binaries
openSUSE Build Service is sponsored by
Places