First Last Prev Next    No search results available      Search page      Enter new bug
Bug#: 154380
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Tavis Ormandy (RETIRED) <taviso@gentoo.org>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
splt-fix.diff sPLT chunk handling fix patch Tavis Ormandy (RETIRED) 2006-11-07 09:10 0000 791 bytes Details | Diff
libpng-1.2.12-r2.ebuild libpng-1.2.12-r2.ebuild text/plain SpanKY 2006-11-09 15:59 0000 1.36 KB Details
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 154380 depends on: Show dependency tree
Bug 154380 blocks: 155278

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2006-11-07 09:08 0000 
A typo in png_set_sPLT() may cause an application using libpng to read out of
bounds, resulting in a crash.

This was discovered by Tavis Ormandy, Gentoo Linux Security Auditing Team.

patch attached.

------- Comment #1 From Tavis Ormandy (RETIRED) 2006-11-07 09:10:03 0000 ------- 
Created an attachment (id=101400) [details]
sPLT chunk handling fix

------- Comment #2 From Matthias Geerdsen 2006-11-09 06:56:54 0000 ------- 
vapier, could you attach an updated ebuild
as usual, pls don't commit anything yet

tavis, is there a disclosure date or anything?

------- Comment #3 From SpanKY 2006-11-09 15:59:27 0000 ------- 
Created an attachment (id=101579) [details]
libpng-1.2.12-r2.ebuild

------- Comment #4 From Matthias Geerdsen 2006-11-10 02:33:13 0000 ------- 
thanks vapier

arch security liaisons, pls test the attached ebuild and give your ok on this
bug do not commit anything yet

------- Comment #5 From Gustavo Zacarias (RETIRED) 2006-11-10 05:21:40 0000 ------- 
sparc looks fine.

------- Comment #6 From Tobias Scherbaum 2006-11-13 09:55:56 0000 ------- 
ppc looks good

------- Comment #7 From Joshua Jackson 2006-11-13 10:44:05 0000 ------- 
x86 looks good

------- Comment #8 From René Nussbaumer 2006-11-13 12:03:01 0000 ------- 
looks good on hppa

------- Comment #9 From Thomas Cort (RETIRED) 2006-11-13 15:14:10 0000 ------- 
looks good on amd64.

------- Comment #10 From Matthias Geerdsen 2006-11-14 11:59:53 0000 ------- 
vapier, pls commit the ebuild

alpha/ppc64 test and mark stable pls, we really want this to go out soon

calling the remaining arches when the ebuild has been committed

------- Comment #11 From Markus Rothe 2006-11-15 05:23:44 0000 ------- 
looks good on ppc64. please commit with stable ppc64 keyword, too. sorry for
being late (that 'having no internet connection thing')

------- Comment #12 From SpanKY 2006-11-15 06:50:58 0000 ------- 
1.2.13 now in portage

------- Comment #13 From Sune Kloppenborg Jeppesen 2006-11-15 07:29:28 0000 ------- 
Arch keywording needed. Target keywords are:

alpha amd64 arm hppa ia64 m68k mips ppc ppc64 s390 sh sparc x86 ~x86-fbsd

------- Comment #14 From Chris Gianelloni (RETIRED) 2006-11-15 08:13:19 0000 ------- 
alpha/amd64/ppc/x86 done...

------- Comment #15 From Matthias Geerdsen 2006-11-15 12:32:02 0000 ------- 
someone please mark this stable on sparc/ppc64/hppa (see comment #5, comment
#8, comment #11) so that we can send the GLSA

------- Comment #16 From Jeroen Roovers 2006-11-15 13:58:50 0000 ------- 
Stable for HPPA.

------- Comment #17 From Gustavo Zacarias (RETIRED) 2006-11-16 04:38:52 0000 ------- 
sparc stable.

------- Comment #18 From Markus Rothe 2006-11-16 07:03:54 0000 ------- 
ppc64 stable

------- Comment #19 From Sune Kloppenborg Jeppesen 2006-11-17 14:36:35 0000 ------- 
GLSA 200611-09

Thx everyone.
First Last Prev Next    No search results available      Search page      Enter new bug