Created attachment 425982 [details] proposed fix, files in /usr/portag/metadata/glsa are unchanged Same problem as Bug 340261 and Bug 507372 but different versions of libpng are affected. glsa-check is reporting the installed version of libpng (1.2.56) as vulnerable. I expect this problem to pop up again with the next version of libpng.
This patch gets rid of the false positives from glsa-check on my systems.
Any chance this patch will be applied. Last update is nearly two months ago.
Revision information added to both GLSA's. Please reopen this bug should you still continue to have false positives. Thank you for the report.
*** Bug 585462 has been marked as a duplicate of this bug. ***