Oracle alert ELSA-2012-0317 (libpng)

From:
    	       Errata Announcements for Oracle Linux <el-errata@oracle.com> 
To:
    	       el-errata@oss.oracle.com 
Subject:
    	       [El-errata] ELSA-2012-0317 Important: Oracle Linux 5 libpng
	security update 
Date:
    	       Tue, 21 Feb 2012 07:07:48 -0800
Message-ID:
    	       <4F43B344.2020804@oracle.com>
Archive-link:
    	       Article, Thread

Oracle Linux Security Advisory ELSA-2012-0317

https://rhn.redhat.com/errata/RHSA-2012-0317.html

The following updated rpms for Oracle Linux 5 have been uploaded to the 
Unbreakable Linux Network:

i386:
libpng-1.2.10-15.el5_7.i386.rpm
libpng-devel-1.2.10-15.el5_7.i386.rpm

x86_64:
libpng-1.2.10-15.el5_7.i386.rpm
libpng-1.2.10-15.el5_7.x86_64.rpm
libpng-devel-1.2.10-15.el5_7.i386.rpm
libpng-devel-1.2.10-15.el5_7.x86_64.rpm

ia64:
libpng-1.2.10-15.el5_7.i386.rpm
libpng-1.2.10-15.el5_7.ia64.rpm
libpng-devel-1.2.10-15.el5_7.ia64.rpm

SRPMS:
http://oss.oracle.com/ol5/SRPMS-updates/libpng-1.2.10-15....

Description of changes:

[2:1.2.10-15]
- Fix CVE-2011-3026
Resolves: CVE-2011-3026

[2:1.2.10-14]
- Install the correct fix for CVE-2011-2690
Resolves: #721304

[2:1.2.10-13]
- Back-port fixes for CVE-2011-2690, CVE-2011-2692
   Note: CVE-2011-2691, announced at the same time, does not apply to 
1.2.10;
   likewise for CVE-2011-2501
Resolves: #721304

[2:1.2.10-12]
- Back-port fixes for CVE-2009-2042, CVE-2010-0205, CVE-2010-1205,
   CVE-2010-2249
Resolves: #609922

[2:1.2.10-11]
- Back-port fixes for CVE-2008-1382 and CVE-2009-0040.
Resolves: #487169

[2:1.2.10-10]
- Back-port critical fixes from libpng 1.2.22, primarily to fix 
CVE-2007-5269
Resolves: #337531
- Update License tag and some other obsolete bits in specfile

[2:1.2.10-9]
- Add patch to fix CVE-2006-5793
Related: #215405

[2:1.2.10-8]
- Add patch to fix CVE-2007-2445
Resolves: #239542

_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
http://oss.oracle.com/mailman/listinfo/el-errata