Closed
Bug 564792
Opened 14 years ago
Closed 14 years ago
Update libpng to version 1.4.3
Categories
(Core :: Graphics: ImageLib, defect)
Core
Graphics: ImageLib
Tracking
()
RESOLVED
FIXED
mozilla2.0b3
People
(Reporter: glennrp+bmo, Assigned: glennrp+bmo)
References
()
Details
Attachments
(1 file, 1 obsolete file)
99.56 KB,
patch
|
joe
:
review+
beltzner
:
approval2.0+
|
Details | Diff | Splinter Review |
Libpng-1.4.2 has been released. There are no changes of importance to mozilla, so this is a very low priority; we probably want to skip this release.
Assignee | ||
Comment 1•14 years ago
|
||
Libpng-1.4.3 has been released. It fixes a vulnerability with reading PNG files that have extra data in the IDAT chunk (CVE 2010-1205) and a memory leak while reading a malformed sCAL chunk. The PNG decoder in libpr0n already has a recently checked-in workaround for the extra-data vulnerability. Both vulnerabilities have been publicly disclosed via the libpr0n check-ins and the libpng release.
Severity: minor → normal
Summary: Update libpng to version 1.4.2 → Update libpng to version 1.4.3
Assignee | ||
Updated•14 years ago
|
Comment 2•14 years ago
|
||
Glenn, can you get us a patch for this?
Updated•14 years ago
|
blocking2.0: --- → ?
status1.9.2:
--- → ?
Assignee | ||
Comment 3•14 years ago
|
||
I'll try to get to it tonight. Note that we aren't vulnerable to the sCAL bug because we treat it as an unknown chunk and don't decode it, even when we use the system library.
Assignee | ||
Comment 4•14 years ago
|
||
Comment 5•14 years ago
|
||
Is there a similar bug for libpng 1.2.x on the branches that still use it?
Comment 6•14 years ago
|
||
The patch looks bigger than it actually is, as you seem to have accidentally included the .diff as part of the diff.
Comment 7•14 years ago
|
||
(yo dawg!)
Assignee | ||
Comment 8•14 years ago
|
||
Removes unwanted libpng diff file created by the v00 patch
Assignee | ||
Updated•14 years ago
|
Attachment #455360 -
Attachment is obsolete: true
Assignee | ||
Comment 9•14 years ago
|
||
(In reply to comment #5) > Is there a similar bug for libpng 1.2.x on the branches that still use it? Yes. The approach there will be to simply replace the IDAT-processing function in pngpread.c.
Updated•14 years ago
|
Attachment #455363 -
Flags: review?(joe)
Updated•14 years ago
|
blocking2.0: ? → -
Updated•14 years ago
|
Attachment #455363 -
Flags: review?(joe) → review+
Comment 10•14 years ago
|
||
Comment on attachment 455363 [details] [diff] [review] v01: update libpng to version 1.4.3 Keeps us up-to-date with libpng, including a security fix (though, we've worked around it already). Makes future security upgrades easier.
Attachment #455363 -
Flags: approval2.0?
Comment 11•14 years ago
|
||
Comment on attachment 455363 [details] [diff] [review] v01: update libpng to version 1.4.3 17:17 < joe> we should probably take it, with a quick hook on backing it out So like the man says, if this bounces, we yank it.
Attachment #455363 -
Flags: approval2.0? → approval2.0+
Updated•14 years ago
|
Keywords: checkin-needed
Comment 12•14 years ago
|
||
http://hg.mozilla.org/mozilla-central/rev/c338f8b7371e
Status: ASSIGNED → RESOLVED
Closed: 14 years ago
Keywords: checkin-needed
Resolution: --- → FIXED
Target Milestone: --- → mozilla2.0b3
You need to log in
before you can comment on or make changes to this bug.
Description
•