* [SECURITY] optipng
@ 2012-10-23 3:26 Yaakov (Cygwin/X)
2012-10-23 4:59 ` RFU: optipng 0.7.4-1 (SECURITY CVE-2012-4432) Jari Aalto
0 siblings, 1 reply; 4+ messages in thread
From: Yaakov (Cygwin/X) @ 2012-10-23 3:26 UTC (permalink / raw)
To: cygwin-apps
Jari,
optipng 0.7.3 contained an incomplete fix for CVE-2012-4432. Please
update to 0.7.4 ASAP.
Yaakov
^ permalink raw reply [flat|nested] 4+ messages in thread
* RFU: optipng 0.7.4-1 (SECURITY CVE-2012-4432)
2012-10-23 3:26 [SECURITY] optipng Yaakov (Cygwin/X)
@ 2012-10-23 4:59 ` Jari Aalto
2012-10-23 5:05 ` Yaakov (Cygwin/X)
0 siblings, 1 reply; 4+ messages in thread
From: Jari Aalto @ 2012-10-23 4:59 UTC (permalink / raw)
To: cygwin-apps
2012-10-23 06:26 "Yaakov (Cygwin/X)"
<yselkowitz-Rn4VEauK+AKRv+LV9MX5uipxlwaOVQ5f@public.gmane.org>:
| Jari,
|
| optipng 0.7.3 contained an incomplete fix for CVE-2012-4432. Please
| update to 0.7.4 ASAP.
wget --recursive --no-host-directories --cut-dirs=3 \
http://cante.net/~jaalto/tmp/cygwin/optipng/optipng-0.7.4-1-src.tar.bz2 \
http://cante.net/~jaalto/tmp/cygwin/optipng/optipng-0.7.4-1.tar.bz2 \
http://cante.net/~jaalto/tmp/cygwin/optipng/setup.hint
Jari
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: RFU: optipng 0.7.4-1 (SECURITY CVE-2012-4432)
2012-10-23 4:59 ` RFU: optipng 0.7.4-1 (SECURITY CVE-2012-4432) Jari Aalto
@ 2012-10-23 5:05 ` Yaakov (Cygwin/X)
0 siblings, 0 replies; 4+ messages in thread
From: Yaakov (Cygwin/X) @ 2012-10-23 5:05 UTC (permalink / raw)
To: cygwin-apps
On Tue, 2012-10-23 at 07:58 +0300, Jari Aalto wrote:
> wget --recursive --no-host-directories --cut-dirs=3 \
> http://cante.net/~jaalto/tmp/cygwin/optipng/optipng-0.7.4-1-src.tar.bz2 \
> http://cante.net/~jaalto/tmp/cygwin/optipng/optipng-0.7.4-1.tar.bz2 \
> http://cante.net/~jaalto/tmp/cygwin/optipng/setup.hint
Uploaded, and removed 0.7.3. Thank you for the prompt response.
Yaakov
^ permalink raw reply [flat|nested] 4+ messages in thread
* [SECURITY] optipng
@ 2016-05-05 2:59 Yaakov Selkowitz
0 siblings, 0 replies; 4+ messages in thread
From: Yaakov Selkowitz @ 2016-05-05 2:59 UTC (permalink / raw)
To: cygwin-apps
Jari,
Three vulnerabilities (CVE-2016-2191, CVE-2016-3981, CVE-2016-3982) have
been announced for optipng:
https://bugzilla.redhat.com/show_bug.cgi?id=1308550
https://bugzilla.redhat.com/show_bug.cgi?id=1327213
https://bugzilla.redhat.com/show_bug.cgi?id=1327215
Please update to 0.7.6 ASAP.
--
Yaakov
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2016-05-05 2:59 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2012-10-23 3:26 [SECURITY] optipng Yaakov (Cygwin/X)
2012-10-23 4:59 ` RFU: optipng 0.7.4-1 (SECURITY CVE-2012-4432) Jari Aalto
2012-10-23 5:05 ` Yaakov (Cygwin/X)
2016-05-05 2:59 [SECURITY] optipng Yaakov Selkowitz
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).