Date: Thu, 5 Aug 2004 05:59:05 +0400 From: Andrey Chernov <ache@nagual.pp.ru> To: Charles Swiger <cswiger@mac.com> Cc: FreeBSD Ports <ports@FreeBSD.ORG> Subject: Re: update vulnerable libpng to fixed version? Message-ID: <20040805015904.GA27667@nagual.pp.ru> In-Reply-To: <2E7293C8-E656-11D8-91D1-003065ABFD92@mac.com> References: <20040804190855.GA69872@iib.unsam.edu.ar> <2E7293C8-E656-11D8-91D1-003065ABFD92@mac.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Aug 04, 2004 at 04:38:02PM -0400, Charles Swiger wrote: > On Aug 4, 2004, at 3:08 PM, Fernan Aguero wrote: > >according to this tech report > >http://www.us-cert.gov/cas/techalerts/TA04-217A.html > >there are a number of vulnerabilities in libpng that are > >fixed in 1.2.6rc1 > > > >is an update of the port being worked on? I'm eager to do a > >'portupgrade -r png'. > > Here's a diff which updates the png port to 1.2.6rc1: We can't make public what is intentionally non-public, from libpng-1.2.6rc1-README.txt: Libpng 1.2.6rc1 - August 4, 2004 This is not intended to be a public release. It will be replaced within a few weeks by a public version or by another test version. -- Andrey Chernov | http://ache.pp.ru/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040805015904.GA27667>