Name: | pngcheck |
Version: | 2.4.0 |
Release: | 7.el7 |
Architecture: | x86_64 |
Group: | Unspecified |
Size: | 138568 |
License: | MIT |
RPM: |
pngcheck-2.4.0-7.el7.x86_64.rpm
|
Source RPM: |
pngcheck-2.4.0-7.el7.src.rpm
|
Build Date: | Thu Feb 18 2021 |
Build Host: | host-100-100-224-17.blddevtest1iad.osdevelopmeniad.oraclevcn.com |
Vendor: | Oracle America |
URL: | http://www.libpng.org/pub/png/apps/pngcheck.html |
Summary: | Verifies the integrity of PNG, JNG and MNG files |
Description: | pngcheck verifies the integrity of PNG, JNG and MNG files (by checking the
internal 32-bit CRCs [checksums] and decompressing the image data); it can
optionally dump almost all of the chunk-level information in the image in
human-readable form. For example, it can be used to print the basic statistics
about an image (dimensions, bit depth, etc.); to list the color and
transparency info in its palette (assuming it has one); or to extract the
embedded text annotations. This is a command-line program with batch
capabilities.
The current release supports all PNG, MNG and JNG chunks, including the newly
approved sTER stereo-layout chunk. It correctly reports errors in all but two
of the images in Chris Nokleberg's brokensuite-20061204. |
-
Thu Jan 07 2021 Benjamin A. Beasley <code@musicinmybrain.net> - 2.4.0-7
- Fix buffer overflow on large MNG LOOP chunk (RHBZ#1908559)
-
Thu Jan 07 2021 Benjamin A. Beasley <code@musicinmybrain.net> - 2.4.0-6
- Fix a buffer overrun for certain invalid MNG PPLT chunk contents
(RHBZ#1907428).
-
Mon Dec 14 2020 Benjamin A. Beasley <code@musicinmybrain.net> - 2.4.0-5
- Previous fix for buffer overrun printing the contents of the sPLT chunk in
certain malformed inputs (RHBZ#1905775) was incomplete; it should be properly
fixed now.
-
Sun Dec 13 2020 Benjamin A. Beasley <code@musicinmybrain.net> - 2.4.0-4
- Bounds-check all accesses into enumerated-value name arrays; a malformed file
could have caused a buffer overrun in several of these cases. (RHBZ#1902810)
- Fix buffer overrun when print_buffer() is passed a nonpositive size, which
can occur in practice for certain malformed inputs. (RHBZ#1902810)
- In some cases, the chunk length from the file data (sz) is used to index into
the read buffer without sufficient bounds-checking, leading to a buffer
overrun. Fix this for PPLT, hIST, sCAL, FRAM, SAVE, nEED, PAST, DISC, DROP,
DBYK, ORDR, and SEEK chunks. (RHBZ#1902810)
- Fix buffer overrun printing the contents of the sPLT chunk in certain
malformed inputs. (RHBZ#1905775)
- Backport fix for off-by-one bug in check_magic() from 3.0.0
- Backport fix for zlib version warnings going to stdout from 3.0.0
- Use name macro when referencing patches.
- Add BR on make in anticipation of
https://fedoraproject.org/wiki/Changes/Remove_make_from_BuildRoot.
- New upstream version 2.4.0
- Added new license file for main package (same MIT-style license)
- Drop format-security patch, now upstreamed
- Use upstreamed man pages; no need to generate with help2man anymore
- Add rpmlintrc rules for -extras subpackage
- Add rpmlintrc file to suppress spurious rpmlint warnings
-
Mon Nov 30 2020 Benjamin A. Beasley <code@musicinmybrain.net> - 2.3.0-5
- Fix null pointer dereference in pngcheck when -f is given and the sCAL chunk
is missing the pixel height.
-
Fri Nov 13 2020 Benjamin A. Beasley <code@musicinmybrain.net> - 2.3.0-4
- Fix buffer overflow (RHBZ #1897485)
-
Wed Oct 28 2020 Benjamin A. Beasley <code@musicinmybrain.net> - 2.3.0-3
- Add _hardened_build macro for EPEL
-
Wed Oct 28 2020 Benjamin A. Beasley <code@musicinmybrain.net> - 2.3.0-2
- Work around Makefile.unx not actually using LDFLAGS; this fixes hardened
build (PIE)
-
Thu Oct 15 2020 Benjamin A. Beasley <code@musicinmybrain.net> - 2.3.0-1
- Initial import (#1886858)