Closed Bug 772732 Opened 12 years ago Closed 12 years ago

Update to libpng-1.5.12

Tracking

()

Status:

RESOLVED WONTFIX

People

(Reporter: glennrp+bmo, Assigned: glennrp+bmo)

References

Details

Glenn Randers-Pehrson

Assignee

Description

•

12 years ago

libpng-1.5.12 has been released to address CVE-2012-3386.  This has no impact on mozilla's libpng implementation, so there is no need to rush to update libpng to this version.
The CVE has been disclosed to the public.  I recommend WONTFIX and wait for the next version of libpng.

Glenn Randers-Pehrson

Assignee

Updated

•

12 years ago

Depends on: 771394

Glenn Randers-Pehrson

Assignee

Updated

•

12 years ago

Assignee: nobody → glennrp+bmo

Status: NEW → ASSIGNED

Ryan VanderMeulen [:RyanVM]

Comment 1

•

12 years ago

(In reply to Glenn Randers-Pehrson from comment #0)
> I recommend WONTFIX and wait for the next version of libpng.

Agreed given the 1.5.11 --> 1.5.12 changelog.

Status: ASSIGNED → RESOLVED

Closed: 12 years ago

Resolution: --- → WONTFIX

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Quick Search

Update to libpng-1.5.12

Categories

(Core :: Graphics: ImageLib, defect)

Tracking

()

People

(Reporter: glennrp+bmo, Assigned: glennrp+bmo)

References

Details

Crash Data

Security

(public)

User Story

Description

Updated

Updated

Comment 1