diff options
author | Sona Sarmadi <sona.sarmadi@enea.com> | 2015-04-29 11:02:19 +0200 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2015-05-01 12:34:06 +0100 |
commit | 10c8aeebca301ffd853e75df3f9c1d16d0352d76 (patch) | |
tree | d0a31b130b59f399032d22321b8b85aa02326b94 /meta-skeleton/recipes-skeleton/service | |
parent | 5f7cdf1e1212af5e3dcf36c8817c63cc853b1a91 (diff) | |
download | openembedded-core-10c8aeebca301ffd853e75df3f9c1d16d0352d76.tar.gz |
libpng16: CVE-2015-0973
Fixes CVE-2015-0973 (duplicate of CVE-2014-9495), a heap-based overflow
vulnerability in the png_combine_row() function of the libpng library,
when very large interlaced images were used.
Upstream patch:
http://sourceforge.net/p/libpng/code/ci/dc294204b641373bc6eb603075a8b98f51a75dd8/
External Reference:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0973
http://seclists.org/oss-sec/2014/q4/1133
Signed-off-by: Sona Sarmadi <sona.sarmadi@enea.com>
Signed-off-by: Maxin B. John <maxin.john@enea.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta-skeleton/recipes-skeleton/service')
0 files changed, 0 insertions, 0 deletions