[El-errata] ELSA-2012-0317 Important: Oracle Linux 5 libpng security update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Tue Feb 21 07:07:48 PST 2012


Oracle Linux Security Advisory ELSA-2012-0317

https://rhn.redhat.com/errata/RHSA-2012-0317.html

The following updated rpms for Oracle Linux 5 have been uploaded to the 
Unbreakable Linux Network:

i386:
libpng-1.2.10-15.el5_7.i386.rpm
libpng-devel-1.2.10-15.el5_7.i386.rpm

x86_64:
libpng-1.2.10-15.el5_7.i386.rpm
libpng-1.2.10-15.el5_7.x86_64.rpm
libpng-devel-1.2.10-15.el5_7.i386.rpm
libpng-devel-1.2.10-15.el5_7.x86_64.rpm

ia64:
libpng-1.2.10-15.el5_7.i386.rpm
libpng-1.2.10-15.el5_7.ia64.rpm
libpng-devel-1.2.10-15.el5_7.ia64.rpm


SRPMS:
http://oss.oracle.com/ol5/SRPMS-updates/libpng-1.2.10-15.el5_7.src.rpm


Description of changes:

[2:1.2.10-15]
- Fix CVE-2011-3026
Resolves: CVE-2011-3026

[2:1.2.10-14]
- Install the correct fix for CVE-2011-2690
Resolves: #721304

[2:1.2.10-13]
- Back-port fixes for CVE-2011-2690, CVE-2011-2692
   Note: CVE-2011-2691, announced at the same time, does not apply to 
1.2.10;
   likewise for CVE-2011-2501
Resolves: #721304

[2:1.2.10-12]
- Back-port fixes for CVE-2009-2042, CVE-2010-0205, CVE-2010-1205,
   CVE-2010-2249
Resolves: #609922

[2:1.2.10-11]
- Back-port fixes for CVE-2008-1382 and CVE-2009-0040.
Resolves: #487169

[2:1.2.10-10]
- Back-port critical fixes from libpng 1.2.22, primarily to fix 
CVE-2007-5269
Resolves: #337531
- Update License tag and some other obsolete bits in specfile

[2:1.2.10-9]
- Add patch to fix CVE-2006-5793
Related: #215405

[2:1.2.10-8]
- Add patch to fix CVE-2007-2445
Resolves: #239542




More information about the El-errata mailing list