[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#26009: libpng-apng

From: Ludovic Courtès
Subject: bug#26009: libpng-apng
Date: Mon, 13 Mar 2017 14:25:23 +0100
User-agent: Gnus/5.13 (Gnus v5.13) Emacs/25.1 (gnu/linux)

ng0 <address@hidden> skribis:

>> That said, please make sure the security issues fixed in ‘libpng/fixed’
>> are also fixed in libpng-apng!


> Do you have any advice how this could be achieved?

I’d check whether libpng-CVE-2016-10087.patch applies to libpng-apng
(it’s the patch that ‘libpng/fixed’ applies.)

Going forward, if the code bases are similar enough, we may have to add
a (cpe-name . "libpng") property to libpng-apng so that ‘guix lint -c
cve’ would report libpng’s vulnerabilities.



reply via email to

[Prev in Thread] Current Thread [Next in Thread]