Version: 1.6.37, Package name: png-1.6.37 |
Maintained by: The OpenBSD ports mailing-list |
Master sites: |
Description libpng (PNG library) is a collection of routines used to create and manipulate PNG format graphics files. The PNG format was designed as a replacement for GIF and, to a lesser extent, TIFF, with many improvements and extensions. |
Filesize: 988.547 KB |
Version History (View Complete History) |
|
2019-11-24 10:21:24 by Marc Espie | Files touched by this commit (2) |
Log message: add debug for jpeg/png okay sthen@ |
2019-07-12 14:47:59 by Stuart Henderson | Files touched by this commit (874) |
Log message: replace simple PERMIT_PACKAGE_CDROM=Yes with PERMIT_PACKAGE=Yes |
2019-04-30 12:39:10 by Christian Weisgerber | Files touched by this commit (2) |
Log message: security fix for CVE-2019-7317 (use-after-free in png_image_free) |
2019-04-30 08:46:48 by Christian Weisgerber | Files touched by this commit (3) |
Log message: Security update of graphics/png to 1.6.37: CVE-2019-7317: use-after-free in png_image_free() Switch library soname from libpng16.so to libpng.so by changing the primary name in the build. Bump major version. ok sthen@ |
2018-08-13 07:31:39 by Solene Rapenne | Files touched by this commit (2) |
Log message: Update to png-1.6.35 ok jca@ naddy@ sthen@ patch sent upstream by tb@ to fix an implicit declaration warning |
2017-08-11 21:05:29 by Christian Weisgerber | Files touched by this commit (3) |
Log message: Maintenance update to 1.6.31. This adds eXIf chunk support. |
2017-04-11 08:15:09 by Christian Weisgerber | Files touched by this commit (2) |
Log message: maintenance update to 1.6.29 |
2017-01-18 15:12:32 by Christian Weisgerber | Files touched by this commit (2) |
Log message: maintenance update to 1.6.28; from Brad |
2017-01-01 14:02:12 by Christian Weisgerber | Files touched by this commit (2) |
Log message: security update to 1.6.27 for null pointer dereference bug |
2016-12-31 09:51:27 by Christian Weisgerber | Files touched by this commit (2) |
Log message: security update to 1.6.27 for null-pointer-dereference bug; from Brad |
2016-11-01 11:29:38 by Christian Weisgerber | Files touched by this commit (2) |
Log message: maintenance update to 1.6.26; from Brad |
2016-09-06 05:45:12 by Stuart Henderson | Files touched by this commit (3) |
Log message: update to libpng-1.6.25 |
2016-08-20 14:52:53 by Christian Weisgerber | Files touched by this commit (3) |
Log message: maintenance update to 1.6.24; from Brad |
2016-06-14 11:26:19 by Christian Weisgerber | Files touched by this commit (3) |
Log message: maintenance update to 1.6.23 after Brad sent me an equivalent diff for .22 |
2016-03-11 12:59:18 by Christian Weisgerber | Files touched by this commit (178) |
Log message: garbage collect CONFIGURE_SHARED |
2015-12-04 14:32:03 by Christian Weisgerber | Files touched by this commit (1) |
Log message: SECURITY update to 1.6.20: Complete fix for CVE-2015-8126: buffer overflow in png_set_PLTE |
2015-12-04 14:31:33 by Christian Weisgerber | Files touched by this commit (1) |
Log message: SECURITY update to 1.6.20: Complete fix for CVE-2015-8126: buffer overflow in png_set_PLTE |
2015-12-04 14:27:58 by Christian Weisgerber | Files touched by this commit (2) |
Log message: SECURITY update to 1.6.20: Complete fix for CVE-2015-8126: buffer overflow in png_set_PLTE |
2015-11-14 13:36:13 by Christian Weisgerber | Files touched by this commit (1) |
Log message: SECURITY update to 1.6.19: Multiple buffer overflows in the png_set_PLTE and png_get_PLTE functions CVE-2015-8126 |
2015-11-14 13:35:42 by Christian Weisgerber | Files touched by this commit (1) |
Log message: SECURITY update to 1.6.19: Multiple buffer overflows in the png_set_PLTE and png_get_PLTE functions CVE-2015-8126 |
2015-11-14 13:27:09 by Christian Weisgerber | Files touched by this commit (3) |
Log message: SECURITY update to 1.6.19: Multiple buffer overflows in the png_set_PLTE and png_get_PLTE functions CVE-2015-8126 ok sthen@ |
2015-10-09 09:28:24 by Christian Weisgerber | Files touched by this commit (1) |
Log message: explicitly replace symlink with file and use sed -i |
2015-10-08 17:45:30 by Stuart Henderson | Files touched by this commit (1) |
Log message: revert previous; libpng.la is a symlink and sed -i doesn't operate on these (so build as-is fails), switching to operating on libpng16.la results in a plist change, and the installed files from the previous package do actually have a difference between libpng.la and libpng16.la(?!). |
2015-10-08 06:02:04 by Jasper Lievisse Adriaanse | Files touched by this commit (24) |
Log message: sed -i |
2015-08-13 14:59:38 by Christian Weisgerber | Files touched by this commit (2) |
Log message: maintenance update to 1.6.18; from Brad, carefully checked by yours truly |
2015-05-06 14:17:48 by Christian Weisgerber | Files touched by this commit (2) |
Log message: maintenance update to 1.6.17; from Brad |
2015-01-26 05:08:06 by Brad Smith | Files touched by this commit (2) |
Log message: Update to png 1.6.16. ok naddy@ |
2014-11-25 15:41:50 by Brad Smith | Files touched by this commit (2) |
Log message: Update to png 1.6.15. ok naddy@ |
2014-11-01 21:12:42 by Brad Smith | Files touched by this commit (2) |
Log message: Update to png 1.6.14. ok naddy@ |
2014-10-16 11:18:42 by Brad Smith | Files touched by this commit (3) |
Log message: Update to png 1.6.13. ok naddy@ |
2011-07-15 05:10:40 by Christian Weisgerber | Files touched by this commit (7) |
Log message: SECURITY update to png-1.5.4: 1. buffer overwrite in png_rgb_to_gray (CVE-2011-2690) 2. crash in png_default_error due to use of NULL Pointer (CVE-2011-2691) 3. memory corruption when handling empty sCAL chunks (CVE-2011-2692) |
2011-07-08 14:34:37 by Christian Weisgerber | Files touched by this commit (8) |
Log message: Update to png 1.5.2. Lots of improvements, but also significant API incompatibility: "The libpng 1.5.x series finally hides the contents of the venerable and hoary png_struct and png_info data structures inside private (i.e., non-installed) header files. Instead of direct struct-access, applications should be using the various png_get_xxx() and png_set_xxx() accessor functions, which have existed for almost as long as libpng itself." |
2011-07-01 11:10:43 by Jasper Lievisse Adriaanse | Files touched by this commit (2) |
Log message: Fix for CVE-2011-2501 libpng "png_format_buffer()" Denial of Service Vulnerability from upstream git |
2011-07-01 11:09:36 by Jasper Lievisse Adriaanse | Files touched by this commit (2) |
Log message: Fix for CVE-2011-2501 libpng "png_format_buffer()" Denial of Service Vulnerability from upstream git |
2011-06-23 16:50:30 by Christian Weisgerber | Files touched by this commit (137) |
Log message: Cope with bsd.man.mk changes and install source man pages. While here, also update some PLISTs, fix PREFIX use, etc. ok landry@ |
2010-10-19 15:04:52 by Christian Weisgerber | Files touched by this commit (17) |
Log message: ports that preformat man pages with mandoc via bsd.man.mk don't need groff |
2010-10-18 12:13:15 by Marc Espie | Files touched by this commit (150) |
Log message: USE_GROFF=Yes |
2010-07-21 20:31:07 by William Yodlowsky | Files touched by this commit (2) |
Log message: SECURITY FIX Resolves CVE-2010-0205, CVE-2010-1205, and CVE-2010-2249 patches from upstream started by stephan@ and reads fine to kili@ (thanks) |
2010-06-27 13:55:04 by Matthias Kilian | Files touched by this commit (4) |
Log message: SECRUTY update to 1.22.44 Fixes CVE-2010-1205. ok naddy@ |
2009-12-06 14:43:11 by Christian Weisgerber | Files touched by this commit (4) |
Log message: maintenance update to 1.2.41 |
2009-10-12 04:17:16 by Christian Weisgerber | Files touched by this commit (4) |
Log message: minor maintenance update to 1.2.40 |
2009-08-23 08:44:18 by Christian Weisgerber | Files touched by this commit (5) |
Log message: maintenance update to 1.2.39 |
2009-06-11 19:59:58 by William Yodlowsky | Files touched by this commit (2) |
Log message: security update to png-1.3.33p0; patches from debian resolves CVE-2008-5907 and CVE-2009-0040 |
2009-03-04 13:17:16 by Christian Weisgerber | Files touched by this commit (5) |
Log message: Security update to 1.2.35: Fix an uninitialized data bug; CVE-2009-0040. |
2008-12-02 09:45:59 by Christian Weisgerber | Files touched by this commit (4) |
Log message: update to 1.2.33, which fixes a minor memory leak |
2008-09-28 08:43:22 by Christian Weisgerber | Files touched by this commit (4) |
Log message: Maintenance update to 1.2.32. Library bump because png_struct has been extended. |
2008-05-07 08:29:39 by Christian Weisgerber | Files touched by this commit (4) |
Log message: Update to 1.2.28 which fixes a number of "security and crash bugs". Bump library version since struct png_struct has changed--this shouldn't be used externally, but you never know. ok bernd@ |
2008-01-04 10:48:38 by Marc Espie | Files touched by this commit (187) |
Log message: tweak FAKE_FLAGS semantics to saner defaults. |
2007-10-16 14:32:18 by Christian Weisgerber | Files touched by this commit (4) |
Log message: SECURITY update to 1.2.22. Fixes a number of out-of-bounds reads in certain chunk-handlers. CVE-2007-5266, CVE-2007-5267, CVE-2007-5268, CVE-2007-5269. |
2007-10-06 13:33:28 by Christian Weisgerber | Files touched by this commit (6) |
Log message: maintenance update to 1.2.20 |
2007-09-15 14:09:43 by Simon Bertrang | Files touched by this commit (142) |
Log message: remove surrounding quotes from COMMENT/BROKEN/PERMIT_* |
2007-05-20 11:39:24 by Nikolay Sturm | Files touched by this commit (2) |
Log message: Fix a NULL pointer dereference vulnerability involving palette images with a malformed tRNS chunk (CVE-2007-2445). from steven |
2007-05-20 11:36:02 by Nikolay Sturm | Files touched by this commit (2) |
Log message: Fix a NULL pointer dereference vulnerability involving palette images with a malformed tRNS chunk (CVE-2007-2445). from steven |
2007-05-16 13:47:00 by Christian Weisgerber | Files touched by this commit (5) |
Log message: SECURITY update to 1.2.18: Fix a NULL pointer dereference vulnerability involving palette images with a malformed tRNS chunk (CVE-2007-2445). ok steven@ |
2007-04-08 09:02:36 by Christian Weisgerber | Files touched by this commit (3) |
Log message: Hardcode our build options in pngconf.h so everything sees really the same interface. ok steven@ |
2007-04-05 10:20:19 by Marc Espie | Files touched by this commit (912) |
Log message: base64 checksums. |
2007-03-15 13:19:23 by Christian Weisgerber | Files touched by this commit (6) |
Log message: update to 1.2.16: - minor bug fixes - we now use the same API no matter whether asm optimizations are enabled or not |
2006-11-30 10:24:13 by Bernd Ahlers | Files touched by this commit (2) |
Log message: The libpng people re-rolled the distfile of png-1.2.14. They fixed some fuckup in their autoconf stuff (which we don't use) and changed dates in comments. Bump PKGNAME. Noticed by aanriot@, thanks! |
2006-11-30 04:25:32 by Bernd Ahlers | Files touched by this commit (4) |
Log message: Update to png-1.2.14. 'fine with me' steven@ |
2006-11-18 09:30:39 by Nikolay Sturm | Files touched by this commit (2) |
Log message: security fix Libpng versions 1.0.6 through 1.2.12 can crash while decoding the sPLT chunk. This is due to an incorrect calculation of the buffer size for storing the palette entries. This bug has been given the identifier CVE-2006-3334. from libpng via bernd@ |
2006-11-18 09:06:26 by Bernd Ahlers | Files touched by this commit (4) |
Log message: Security update to libpng-1.2.13. (CVE-2006-3334) Libpng versions 1.0.6 through 1.2.12 can crash while decoding the sPLT chunk. This is due to an incorrect calculation of the buffer size for storing the palette entries. ok steven@ |
2006-11-18 00:59:44 by Nikolay Sturm | Files touched by this commit (2) |
Log message: security fix Libpng versions 1.0.6 through 1.2.12 can crash while decoding the sPLT chunk. This is due to an incorrect calculation of the buffer size for storing the palette entries. This bug has been given the identifier CVE-2006-3334. from libpng via bernd@ |
2006-07-02 09:31:23 by Nikolay Sturm | Files touched by this commit (2) |
Log message: MFC: Fixes a buffer overflow vulnerability. More information: http://www.securityfocus.com/bid/18698/ |
2006-07-02 09:30:43 by Nikolay Sturm | Files touched by this commit (2) |
Log message: MFC: Fixes a buffer overflow vulnerability. More information: http://www.securityfocus.com/bid/18698/ |
2006-06-29 08:33:47 by Bernd Ahlers | Files touched by this commit (4) |
Log message: Security update to png-1.2.12. Fixes a buffer overflow vulnerability. More information: http://www.securityfocus.com/bid/18698/ ok steven@ naddy@ |
2006-05-13 07:52:48 by Bernd Ahlers | Files touched by this commit (3) |
Log message: We compile png with -DPNG_NO_ASSEMBLER_CODE. Unfortunately, the libpng build system doesn't install a pngconf.h appropriate to the options passed to the build. So we have to put a PNG_NO_ASSEMBLER_CODE define into pngconf.h manually. This unbreaks (at least) ImageMagick on amd64. Some more information about this problem can be found here: http://sourceforge.net/mailarchive/forum.php?thread_id=10314069&forum_id=43850 Since we don't want to compile pentium specific code, remove -DPNG_USE_PNGGCCRD. Bump major lib version and PKGNAME. with help & ok steven@, naddy@ |
2006-05-10 07:50:01 by Bernd Ahlers | Files touched by this commit (5) |
Log message: Update to png-1.2.10 and better DESCR. ok naddy@ |
2005-12-26 15:33:17 by Steven Mestdagh | Files touched by this commit (3) |
Log message: SHARED_LIBS feedback and ok naddy@ |
2005-10-29 18:10:42 by Federico G. Schwindt | Files touched by this commit (38) |
Log message: after querying brad@ he decided to drop maintainership for these. |
2005-07-23 22:55:35 by Brad Smith | Files touched by this commit (5) |
Log message: upgrade to png 1.2.8 From: Simon Dassow <janus at area319 dot de> |
2005-04-17 07:37:43 by Marc Espie | Files touched by this commit (8) |
Log message: this stuff builds without really installing it now. |
2005-01-05 09:50:39 by Christian Weisgerber | Files touched by this commit (106) |
Log message: SIZE |
2004-10-14 22:41:13 by Brad Smith | Files touched by this commit (4) |
Log message: install pkgconfig file for png. From: Jacob Meuser <jakemsr at jakemsr dot com> |
2004-09-22 15:08:20 by Brad Smith | Files touched by this commit (1) |
Log message: bad bad me, I managed to kill the PKGNAME with the previous commit noticed by espie@ |
2004-09-19 19:24:11 by Brad Smith | Files touched by this commit (12) |
Log message: upgrade to png 1.2.7 |
2004-09-14 18:50:12 by Marc Espie | Files touched by this commit (121) |
Log message: new plists |
2004-08-07 02:03:07 by Marc Espie | Files touched by this commit (5) |
Log message: new plists |
2004-08-05 13:53:27 by Brad Smith | Files touched by this commit (3) |
Log message: Add pieces of the libpng jumbo security patch not already in the port. http://www.us-cert.gov/cas/techalerts/TA04-217A.html |
2004-08-05 13:32:37 by Brad Smith | Files touched by this commit (3) |
Log message: Add pieces of the libpng jumbo security patch not already in the port. http://www.us-cert.gov/cas/techalerts/TA04-217A.html |
2004-08-05 13:17:14 by Brad Smith | Files touched by this commit (7) |
Log message: Add pieces of the libpng jumbo security patch not already in the port. http://www.us-cert.gov/cas/techalerts/TA04-217A.html |
2004-08-05 03:16:04 by Marc Espie | Files touched by this commit (3) |
Log message: more new PLISTs |
2004-07-10 17:41:49 by Brad Smith | Files touched by this commit (3) |
Log message: MFC: - fix buffer overflows with 16-bit and greyscale samples, CAN-2002-1363. - use upstream patch for older CAN-2004-0421 issue. http://www.openpkg.org/security/OpenPKG-SA-2003.001-png.html http://www.openpkg.org/security/OpenPKG-SA-2004.030-png.html |
2004-07-10 17:31:22 by Brad Smith | Files touched by this commit (3) |
Log message: MFC: - fix buffer overflows with 16-bit and greyscale samples, CAN-2002-1363. - use upstream patch for older CAN-2004-0421 issue. http://www.openpkg.org/security/OpenPKG-SA-2003.001-png.html http://www.openpkg.org/security/OpenPKG-SA-2004.030-png.html |
2004-07-10 17:19:21 by Brad Smith | Files touched by this commit (2) |
Log message: use upstream patch instead. |
2004-07-06 16:17:49 by Brad Smith | Files touched by this commit (2) |
Log message: fix buffer overflows with 16-bit and greyscale samples. CAN-2002-1363 http://www.openpkg.org/security/OpenPKG-SA-2003.001-png.html http://www.openpkg.org/security/OpenPKG-SA-2004.030-png.html |
2004-07-06 16:06:18 by Brad Smith | Files touched by this commit (1) |
Log message: better diff from openpkg |
2004-07-06 15:53:17 by Brad Smith | Files touched by this commit (1) |
Log message: sync |
2004-05-03 05:42:13 by Robert Nagy | Files touched by this commit (2) |
Log message: Log message: Fix for CAN-2004-0421: Steve Grubb reports a buffer read overrun in libpng's png_format_buffer function. A specially constructed PNG image processed by an application using libpng may trigger the buffer read overrun and possibly result in an application crash. bump PKGNAME; ok brad@ |
2004-05-03 05:30:13 by Robert Nagy | Files touched by this commit (2) |
Log message: Fix for CAN-2004-0421: Steve Grubb reports a buffer read overrun in libpng's png_format_buffer function. A specially constructed PNG image processed by an application using libpng may trigger the buffer read overrun and possibly result in an application crash. bump PKGNAME; ok brad@ |
2004-05-02 23:13:04 by Robert Nagy | Files touched by this commit (2) |
Log message: Fix for CAN-2004-0421: Steve Grubb reports a buffer read overrun in libpng's png_format_buffer function. A specially constructed PNG image processed by an application using libpng may trigger the buffer read overrun and possibly result in an application crash. ok brad@ |
2004-04-06 02:32:45 by Brad Smith | Files touched by this commit (1) |
Log message: remove LDADD instead of leaving it empty. |
2004-02-25 13:24:41 by Brad Smith | Files touched by this commit (1) |
Log message: oops, check -> regress |
2004-02-24 16:18:58 by Brad Smith | Files touched by this commit (2) |
Log message: - add license marker - remove REGRESS_TARGET and add a check target to the png Makefile |
2003-12-17 17:09:49 by Marc Espie | Files touched by this commit (3) |
Log message: Unlink png from zlib, bump major number. Breaks lbreakout2 and pdflib, we don't really care, we'll fix them. |
2003-12-15 14:42:44 by Christian Weisgerber | Files touched by this commit (507) |
Log message: remove WWW lines |
2003-01-24 22:52:21 by Brad Smith | Files touched by this commit (3) |
Log message: - strip out some useless docs - install libpng-config |
2002-10-30 16:55:27 by Brad Smith | Files touched by this commit (3) |
Log message: upgrade to png 1.2.5 |