Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

Fedora 22: 2016-01-04 Critical: Libpng Buffer Overflow Fix

fedora
Calendar Grey January 4, 2016
Dist Fedora Esm H88
The latest security patch for Fedora 22 mitigates vulnerabilities in libpng and provides details regarding the upstream release.
new upstream release 1.5.25 (#1288265) ---- Security fix CVE-2015-8126 (#1281756, #1282902) ---- new upstream release 1.5.24 (#1281632)

Summary

The libpng15 package provides libpng 1.5, an older version of the libpng.

library for manipulating PNG (Portable Network Graphics) image format files.

This version should be used only if you are unable to use the current

version of libpng.

Update Information:

new upstream release 1.5.25 (#1288265) ---- Security fix CVE-2015-8126 (#1281756, #1282902) ---- new upstream release 1.5.24 (#1281632)

Change Log

References


[ 1 ] Bug #1281756 - CVE-2015-8126 CVE-2015-8472 libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions https://bugzilla.redhat.com/show_bug.cgi?id=1281756

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update libpng15' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: libpng15
Product: Fedora 22
Version: 1.5.25
Release: 1.fc22
Summary: Old version of libpng, needed to run old binaries

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here