b5be536f5e- version update to 1.6.44: * Hardened calculations in chroma handling to prevent overflows, and relaxed a constraint in cHRM validation to accomodate the standard ACES AP1 set of color primaries. (Contributed by John Bowler) * Removed the ASM implementation of ARM Neon optimizations and updated the build accordingly. Only the remaining C implementation shall be used from now on, thus ensuring the support of the PAC/BTI security features on ARM64. (Contributed by Ross Burton and John Bowler) * Fixed the pickup of the PNG_HARDWARE_OPTIMIZATIONS option in the CMake build on FreeBSD/amd64. This is an important performance fix on this platform. * Applied various fixes and improvements to the CMake build. (Contributed by Eric Riff, Benjamin Buch and Erik Scholz) * Added fuzzing targets for the simplified read API. (Contributed by Mikhail Khachayants) * Fixed a build error involving pngtest.c under a custom config. This was a regression introduced in a code cleanup in libpng-1.6.43. (Contributed by Ben Wagner) * Fixed and improved the config files for AppVeyor CI and Travis CI. - Drop upstream patch: * 563.patch
devel
Petr Gajdos2024-10-30 10:23:31 +00:00
e94123dbdaAccepting request 1194654 from graphics
Ana Guerrero
2024-08-20 14:12:43 +00:00
7550ad9f8d- make check actually works under asanPetr Gajdos2019-04-17 06:29:38 +00:00
94fadb06fa- version update to 1.6.37 Fixed a use-after-free vulnerability (CVE-2019-7317) in png_image_free. Fixed a memory leak in the ARM NEON implementation of png_do_expand_palette. Fixed a memory leak in pngtest.c. Fixed two vulnerabilities (CVE-2018-14048, CVE-2018-14550) in contrib/pngminus; refactor. Changed the license of contrib/pngminus to MIT; refresh makefile and docs. (Contributed by Willem van Schaik) Added makefiles for AddressSanitizer-enabled builds. - deleted patches - libpng-arm-free.patch (upstreamed)Petr Gajdos2019-04-15 15:03:17 +00:00
003ccb84a9Accepting request 669458 from graphics
Stephan Kulow
2019-02-04 20:24:19 +00:00
7d96e07570- update to 1.6.36: Replaced the remaining uses of png_size_t with size_t (Cosmin) Fixed the calculation of row_factor in png_check_chunk_length (reported by Thuan Pham in SourceForge issue #278) Added missing parentheses to a macro definition (suggested by "irwir" in GitHub issue #216) Optimized png_do_expand_palette for ARM processors. Improved performance by around 10-22% on a recent ARM Chromebook. (Contributed by Richard Townsend, ARM Holdings) Fixed manipulation of machine-specific optimization options. (Contributed by Vicki Pfau) Used memcpy instead of manual pointer arithmetic on Intel SSE2. (Contributed by Samuel Williams) Fixed build errors with MSVC on ARM64. (Contributed by Zhijie Liang) Fixed detection of libm in CMakeLists. (Contributed by Cameron Cawley) Fixed incorrect creation of pkg-config file in CMakeLists. (Contributed by Kyle Bentley) Fixed the CMake build on Windows MSYS by avoiding symlinks. Fixed a build warning on OpenBSD. (Contributed by Theo Buehler) Fixed various typos in comments. (Contributed by "luz.paz") Raised the minimum required CMake version from 3.0.2 to 3.1. Removed yet more of the vestigial support for pre-ANSI C compilers. Removed ancient makefiles for ancient systems that have been broken across all previous libpng-1.6.x versions. Removed the Y2K compliance statement and the export control information.Petr Gajdos2018-12-31 09:48:16 +00:00
e4eeecccf9Accepting request 570288 from home:avindraPetr Gajdos2018-01-29 06:59:18 +00:00
096fdd65d9Accepting request 514898 from graphicsYuchen Lin2017-08-12 17:42:48 +00:00
4f461efd3c- update to 1.6.31: * Guard the definition of _POSIX_SOURCE in pngpriv.h. * Revised pngpriv.h to work around failure to compile arm/filter_neon.S. * Added "Requires: zlib" to libpng.pc.in. * Added special case for FreeBSD in arm/filter_neon.S. * Changed "int" to "png_size_t" in intel/filter_sse2.c to prevent possible integer overflow. * Added eXIf chunk support. - remove upstreamed 0001-libpng16-Revised-pngpriv.h-to-use-PNG_VERSION_INFO_O.patchPetr Gajdos2017-08-07 09:56:16 +00:00
3063cf7ec4- update to 1.6.30: Revised documentation of png_get_error_ptr() in the libpng manual. Document need to check for integer overflow when allocating a pixel buffer for multiple rows in contrib/gregbook, contrib/pngminus, example.c, and in the manual (suggested by Jaeseung Choi). This is similar to the bug reported against pngquant in CVE-2016-5735. Check for integer overflow in contrib/visupng and contrib/tools/genpng. Do not double evaluate CMAKE_SYSTEM_PROCESSOR in CMakeLists.txt. Avoid writing an empty IDAT when the last IDAT exactly fills the compression buffer (bug report by Brian Baird). This bug was introduced in libpng-1.6.0. Add a reference to the libpng.download site in README.Petr Gajdos2017-06-30 15:52:07 +00:00
e223e90f15- update to 1.6.29: Moved SSE2 optimization code into the main libpng source directory. Configure libpng with "configure --enable-intel-sse" or compile libpng with "-DPNG_INTEL_SSE" in CPPFLAGS to enable it. Added code for PowerPC VSX optimisation (Vadim Barkov). Avoid potential overflow of shift operations in png_do_expand() (Aaron Boxer).Petr Gajdos2017-03-16 20:25:46 +00:00
3e860acfee- update to 1.6.26: Fixed handling zero length IDAT in pngfix (bug report by Agostino Sarubbo, bugfix by John Bowler). Do not issue a png_error() on read in png_set_pCAL() because png_handle_pCAL has allocated memory that libpng needs to free. Issue a png_benign_error instead of a png_error on ADLER32 mismatch while decoding compressed data chunks. Changed PNG_ZLIB_VERNUM to ZLIB_VERNUM in pngpriv.h, pngstruct.h, and pngrutil.c. If CRC handling of critical chunks has been set to PNG_CRC_QUIET_USE, ignore the ADLER32 checksum in the IDAT chunk as well as the chunk CRCs. Issue png_benign_error() on ADLER32 checksum mismatch instead of png_error(). Updated the documentation about CRC and ADLER32 handling. Fixed offsets in contrib/intel/intel_sse.patch Changed integer constant 4294967294 to unsigned 4294967294U in pngconf.h to avoid a signed/unsigned compare in the preprocessor. Use zlib-1.2.8.1 inflateValidate() instead of inflateReset2() to optionally avoid ADLER32 evaluation.Petr Gajdos2016-10-20 06:18:51 +00:00
6bc0cde88a- update to 1.6.24: Avoid potential overflow of the PNG_IMAGE_SIZE macro. Correct filter heuristic overflow handling. Use a more efficient absolute value calculation on SSE2. Added pngcp. etc. see ANNOUNCEPetr Gajdos2016-08-04 06:31:09 +00:00
a6a00192a4Accepting request 416808 from home:susnux:branches:graphicsPetr Gajdos2016-08-04 06:18:33 +00:00
32b40ffb9f- update to 1.6.22: Added a png_image_write_to_memory() API and a number of assist macros to allow an application that uses the simplified API write to bypass stdio and write directly to memory. Relaxed limit checks on gamma values in pngrtran.c. As suggested in the comments gamma values outside the range currently permitted by png_set_alpha_mode are useful for HDR data encoding. These values are already permitted by png_set_gamma so it is reasonable caution to extend the png_set_alpha_mode range as HDR imaging systems are starting to emerge. Restored "& 0xff" in png_save_uint_16() and png_save_uint_32() that were accidentally removed from libpng-1.6.17. Changed PNG_INFO_cHNK and PNG_FREE_cHNK from 0xnnnn to 0xnnnnU in png.h (Robert C. Seacord). Added INTEL-SSE2 support (Mike Klein and Matt Sarett, Google, Inc.). SSE filter speed improvements for bpp=3: memcpy-free implementations of load3() / store3(). Added PNG_FAST_FILTERS macro (defined as PNG_FILTER_NONE|PNG_FILTER_SUB|PNG_FILTER_UP).Petr Gajdos2016-05-26 15:01:34 +00:00
5646b27ba7- update to 1.6.20: Avoid potential pointer overflow/underflow in png_handle_sPLT() and png_handle_pCAL() (Bug report by John Regehr). Fixed incorrect implementation of png_set_PLTE() that uses png_ptr not info_ptr, that left png_set_PLTE() open to the CVE-2015-8126 vulnerability. Backported tests from libpng-1.7.0beta69. Fixed an error in handling of bad zlib CMINFO field in pngfix, found by American Fuzzy Lop, reported by Brian Carpenter. inflate() doesn't immediately fault a bad CMINFO field; instead a 'too far back' error happens later (at least some times). pngfix failed to limit CMINFO to the allowed values but then assumed that window_bits was in range, triggering an assert. The bug is mostly harmless; the PNG file cannot be fixed. In libpng 1.6 zlib initialization was changed to use the window size in the zlib stream, not a fixed value. This causes some invalid images, where CINFO is too large, to display 'correctly' if the rest of the data is valid. This provides a workaround for zlib versions where the error arises (ones that support the API change to use the window size in the stream).Petr Gajdos2015-12-03 15:14:24 +00:00
35368c612d- update to 1.6.19: Fixed potential leak of png_pixels in contrib/pngminus/pnm2png.c Fixed uninitialized variable in contrib/gregbook/rpng2-x.c Fixed the recently reported 1's complement security issue. Fixed png_save_int_32 when int is not 2's complement by replacing the value that is illegal in the PNG spec, in both signed and unsigned values, with 0. etc., see ANNOUNCE and CHANGES for details - removed: libpng-rgb_to_gray-checks.patch (upstreamed)Petr Gajdos2015-11-13 07:46:48 +00:00
eaa7188047- Fixed rgb_to_gray checks and added tRNS checks to pngvalid.c. + libpng-rgb_to_gray-checks.patchPetr Gajdos2015-04-01 11:08:39 +00:00
e5bea13bdb- updated to 1.6.27: Corrected the width limit calculation in png_check_IHDR(). Removed user limits from pngfix. Also pass NULL pointers to png_read_row to skip the unnecessary row de-interlace stuff. Implement previously untested cases of libpng transforms in pngvalid.c Fixed byte order in 2-byte filler, in png_do_read_filler(). Made the check for out-of-range values in png_set_tRNS() detect values that are exactly 2^bit_depth, and work on 16-bit platforms. Merged some parts of libpng-1.6.17beta01 and libpng-1.7.0beta47. Added #ifndef __COVERITY__ where needed in png.c, pngrutil.c and pngset.c to avoid warnings about dead code. Do not build png_product2() when it is unused. Display user limits in the output from pngtest. Eliminated the PNG_SAFE_LIMITS macro and restored the 1-million-column and 1-million-row default limits in pnglibconf.dfa, that can be reset by the user at build time or run time. This provides a more robust defense against DOS and as-yet undiscovered overflows. Added PNG_WRITE_CUSTOMIZE_COMPRESSION_SUPPORTED macro, on by default. Allow user to call png_get_IHDR() with NULL arguments (Reuben Hawkins). Moved png_set_filter() prototype into a PNG_WRITE_SUPPORTED block of png.h. Free the unknown_chunks structure even when it contains no data. Fixed simplified 8-bit-linear to sRGB alpha. The calculated alpha value was wrong. It's not clear if this affected the final stored value; in the obvious code path the upper and lower 8-bits of the alpha value were identical and the alpha was truncated to 8-bits rather than dividing by 257 (John Bowler).Petr Gajdos2015-03-30 07:13:45 +00:00
3d6e3910bf- updated to 1.6.16: * Restored a test on width that was removed from png.c at libpng-1.6.9 (Bug report by Alex Eubanks). * Fixed an overflow in png_combine_row with very wide interlaced images.Petr Gajdos2014-12-29 14:30:26 +00:00
58e3f7658d- updated to 1.6.15: * Avoid out-of-bounds memory access in png_user_version_check(). * Fixed incorrect handling of the iTXt compression. * Free all allocated memory in pngimage. * Fixed array size calculations to avoid warnings. etc. see ANNOUNCEPetr Gajdos2014-11-20 20:12:18 +00:00
89d1aad626Accepting request 245710 from graphics
Stephan Kulow
2014-08-28 08:01:53 +00:00
8bbae2fc89- updated to 1.6.13: a "cleanup" release that have no security fixes or new features.Petr Gajdos2014-08-22 05:56:30 +00:00
d28a770632Accepting request 236983 from graphics
Stephan Kulow
2014-06-18 05:49:36 +00:00
Dominique Leuenberger
Petr Gajdos
Ana Guerrero
Stephan Kulow
Marcus Meissner
Richard Brown
Yuchen Lin
Ismail Dönmez
Tomáš Chvátal