bug#26009: libpng-apng

guix-patches

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#26009: libpng-apng

From:	Ludovic Courtès
Subject:	bug#26009: libpng-apng
Date:	Mon, 13 Mar 2017 14:25:23 +0100
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/25.1 (gnu/linux)

ng0 <address@hidden> skribis:

>> That said, please make sure the security issues fixed in ‘libpng/fixed’
>> are also fixed in libpng-apng!

[...]

> Do you have any advice how this could be achieved?

I’d check whether libpng-CVE-2016-10087.patch applies to libpng-apng
(it’s the patch that ‘libpng/fixed’ applies.)

Going forward, if the code bases are similar enough, we may have to add
a (cpe-name . "libpng") property to libpng-apng so that ‘guix lint -c
cve’ would report libpng’s vulnerabilities.

HTH!

Ludo’.

[Prev in Thread]

Current Thread

[Next in Thread]

bug#26009: libpng-apng, ng0, 2017/03/07
- bug#26009: libpng-apng, Kei Kebreau, 2017/03/12
  - bug#26009: libpng-apng, ng0, 2017/03/13
  - bug#26009: libpng-apng, Ludovic Courtès, 2017/03/13
    - bug#26009: libpng-apng, ng0, 2017/03/13
    - bug#26009: libpng-apng, Ludovic Courtès <=
    - bug#26009: libpng-apng, Kei Kebreau, 2017/03/14
    - bug#26009: libpng-apng, Ludovic Courtès, 2017/03/14
    - bug#26009: libpng-apng, Kei Kebreau, 2017/03/14
    - bug#26009: libpng-apng, ng0, 2017/03/15
    - bug#26009: libpng-apng, Kei Kebreau, 2017/03/15
    - bug#26009: libpng-apng, Ludovic Courtès, 2017/03/16
    - bug#26009: libpng-apng, Kei Kebreau, 2017/03/16
    - bug#26009: libpng-apng, ng0, 2017/03/16
    - bug#26009: libpng-apng, Kei Kebreau, 2017/03/17
    - bug#26009: libpng-apng, ng0, 2017/03/23

Prev by Date: bug#25955: [PATCH] guix: Only attempt to build json builder if json is available.
Next by Date: bug#25966: [PATCH 2/2] gnu: gitolite: Fix shebangs in hooks.
Previous by thread: bug#26009: libpng-apng
Next by thread: bug#26009: libpng-apng
Index(es):
- Date
- Thread