AuroraMiddleware/libpng
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
2,800 Commits 1 Branch 0 Tags 22 MiB
a106899acd
Commit Graph

1819 Commits

Author SHA1 Message Date
Glenn Randers-Pehrson
a106899acd [libpng16] Use zlib-1.2.8.1 inflateValidate() instead of inflateReset2() to 
avoid ADLER32 evaluation.
 2016-10-07 13:33:50 -05:00
Glenn Randers-Pehrson
ffaeff82d3 [libpng16] Bump version to 1.6.26beta06 2016-10-05 19:43:55 -05:00
Glenn Randers-Pehrson
13bdd8bcdf [libpng16] Imported from libpng-1.6.26beta05.tar 2016-10-05 19:43:35 -05:00
Glenn Randers-Pehrson
7d7694ae6a [libpng16] Changed integer constant 4294967294 to unsigned 4294967294U in pngconf.h 
to avoid a signed/unsigned compare in the preprocessor.
 2016-10-05 09:23:08 -05:00
Glenn Randers-Pehrson
b3540f9932 [libpng16] Bump version to 1.6.26beta05 2016-10-03 12:31:18 -05:00
Glenn Randers-Pehrson
a5084f1522 [libpng16] Imported from libpng-1.6.26beta04.tar 2016-10-03 12:31:06 -05:00
Glenn Randers-Pehrson
f6497e03d1 i[lbpng16] Quieted (bogus?) clang warnings about "absolute value has no effect". 
Fixed offsets in contrib/intel/intel_sse.patch
 2016-10-02 20:07:22 -05:00
Glenn Randers-Pehrson
b7b59b7fe9 [libpng16] Bump version to 1.6.26beta04 2016-10-02 19:18:29 -05:00
Glenn Randers-Pehrson
ce45f85c61 [lbpng16] Removed contrib/libtests/*.orig and *.rej that slipped into the 
tarballs.
 2016-10-02 19:03:57 -05:00
Glenn Randers-Pehrson
761d833372 [libpng16] Quieted all remaining -Wconversion compiler warnings 2016-10-02 18:46:35 -05:00
Glenn Randers-Pehrson
3875d9af4c [libpng16] Quieted 45 (out of 86 remaining) -Wconversion compiler warnings 2016-10-02 17:08:46 -05:00
Glenn Randers-Pehrson
ad3318ddc8 [libpng16] Bump version to 1.6.26beta03 2016-10-01 19:44:42 -05:00
Glenn Randers-Pehrson
c180e7a437 [libpng16] Updated CHANGES and ANNOUNCE 2016-09-30 21:54:06 -05:00
Glenn Randers-Pehrson
b5b77a72b4 Revert "[libpng16] Quieted about 100 warnings from clang-3.8 in pngtrans.c, pngread.c," 
This reverts commit 97dfccb632.
 2016-09-30 21:34:21 -05:00
Glenn Randers-Pehrson
97dfccb632 [libpng16] Quieted about 100 warnings from clang-3.8 in pngtrans.c, pngread.c, 
pngwrite.c, pngunknown.c, and pngvalid.c.  Several warnings still remain
in pngvalid.c
 2016-09-30 21:02:03 -05:00
Glenn Randers-Pehrson
1b363fa6b0 [libpng16] Quieted 116 (out of 288) -Wconversion compiler warnings by changing 
flag definitions in pngpriv.h from 0xnnnn to 0xnnnnU and trivial changes
in png.c, pngread.c, and pngwutil.c.
 2016-09-30 17:19:12 -05:00
Glenn Randers-Pehrson
fa24421216 [libpng16] Quieted 74 (out of 288) -Wconversion compiler warnings by changing 
flag definitions in pngpriv.h from 0xnnnn to 0xnnnnU.
 2016-09-30 16:26:07 -05:00
Glenn Randers-Pehrson
d84fd77bf8 [libpng16] Quieted a warning from clang-3.8 in pngtrans.c. 2016-09-30 14:22:57 -05:00
Glenn Randers-Pehrson
04dab1e82d [libpng16] Updated the documentation about CRC and ADLER32 handling. 2016-09-26 11:15:22 -05:00
Glenn Randers-Pehrson
394be58371 [libpng16] Bump version to 1.6.26beta02 2016-09-26 08:58:04 -05:00
Glenn Randers-Pehrson
8aa1638ccc [libpng16] Add tests/badcrc.png and tests/badadler.png to tests/pngtest. 
Merged pngtest.c with libpng-1.7.0beta84/pngtest.c
 2016-09-26 08:09:44 -05:00
Glenn Randers-Pehrson
89ea081433 [libpng16] If CRC handling of critical chunks has been set to PNG_CRC_QUIET_USE, 
ignore the ADLER32 checksum in the IDAT chunk as well as the chunk CRCs.
 2016-09-25 17:42:15 -05:00
Glenn Randers-Pehrson
7835716cef [libpng16] Changed PNG_ZLIB_VERNUM to ZLIB_VERNUM in pngpriv.h, pngstruct.h, 
and pngrutil.c.
 2016-09-19 16:46:54 -05:00
Glenn Randers-Pehrson
1842d7c865 [libpng16] Issue a png_benign_error instead of a png_error on ADLER32 mismatch 
while decoding compressed data chunks.
 2016-09-11 22:02:05 -05:00
Glenn Randers-Pehrson
bc2bb96cd7 [libpng16] Conditionally compile png_set_benign_errors() in pngread.c 2016-09-11 19:22:28 -05:00
Glenn Randers-Pehrson
5cb1700702 [libpng16] Update CHANGES and ANNOUNCE and last-changed date in pngset.c 2016-09-03 11:51:29 -05:00
Glenn Randers-Pehrson
90ea4af4a1 [libpng16] Update CHANGES and ANNOUNCE 2016-09-01 17:28:08 -05:00
Glenn Randers-Pehrson
c9d7b865b6 [libpng16] Bump version to 1.6.26beta01 2016-08-31 23:19:25 -05:00
Glenn Randers-Pehrson
e3a6631123 [libpng16] Imported from libpng-1.6.25.tar 2016-08-31 22:30:47 -05:00
Glenn Randers-Pehrson
434aecf327 [libpng16] Bump version to 1.6.25rc06 2016-08-30 11:21:11 -05:00
Glenn Randers-Pehrson
abd88841ef [libpng16] Imported from libpng-1.6.25rc05.tar 2016-08-30 11:15:49 -05:00
Glenn Randers-Pehrson
42e5441888 [libpng16] Bump version to 1.6.25rc05 2016-08-30 10:46:51 -05:00
Glenn Randers-Pehrson
4ade4e8a0d [libpng16] Updated CHANGES and ANNOUNCE 2016-08-30 04:26:29 -05:00
Glenn Randers-Pehrson
2e2330bf25 [libpng16] Bump version to 1.6.25rc04 2016-08-29 16:15:28 -05:00
Glenn Randers-Pehrson
0a2d496d58 [libpng16] Imported from libpng-1.6.25rc03.tar 2016-08-29 16:10:33 -05:00
Glenn Randers-Pehrson
000f07bfbe [libpng16] Bump version to 1.6.25rc03 2016-08-29 10:57:26 -05:00
Glenn Randers-Pehrson
05a4db1fcd [libpng16] Update CHANGES, ANNOUNCE with entry about MIPS support 2016-08-29 09:13:09 -05:00
Glenn Randers-Pehrson
143434ac78 [libpng16] Bump version to 1.6.25beta03 2016-08-18 12:23:08 -05:00
Glenn Randers-Pehrson
4dc4b2efac [libpng16] Imported from libpng-1.6.25beta02.tar 2016-08-18 12:17:31 -05:00
Glenn Randers-Pehrson
9cab7a24fd [libpng16] Minor editing of INSTALL, (whitespace, added copyright line) 2016-08-17 06:39:26 -05:00
Glenn Randers-Pehrson
39df0ced18 [libpng16] Don't install pngcp; it conflicts with pngcp in the pngtools package. 
Moved it from bin_PROGRAMS to check_PROGRAMS in Makefile.am so it will be
built but not installed.
 2016-08-13 21:23:42 -05:00
Glenn Randers-Pehrson
2705f55221 [libpng16] Bump version to 1.6.25beta02 2016-08-12 07:05:46 -05:00
Glenn Randers-Pehrson
8ff2ed2fe1 [libng16] Conditionally compile png_inflate(). It's not needed for iCCP 
chunk reading.
 2016-08-11 20:13:33 -05:00
Glenn Randers-Pehrson
6bdaf38d12 [libpng16] Revert change to png_malloc_array(). It's not needed 
now that iCCP profile_length honors PNG_USER_CHUNK_MALLOC_MAX.
 2016-08-10 22:26:12 -05:00
Glenn Randers-Pehrson
e018ab98be Merge branch 'libpng16' of git://github.com/jbowler/libpng into libpng16 2016-08-10 20:49:48 -05:00
John Bowler
92a7c79db2 [libpng16] Reject oversized iCCP profile length 
The code now validates the ICC profile length against the user chunk limit
before the buffer is allocated, as opposed to doing it while the buffer is read.

This removes the potential to consume virtual address space with a carefully
crafted ICC profile; only an issue on 32-bit systems where a valid profile can
be up to 2^32-4 bytes in length.  libpng never writes beyond the application
supplied limit, but previously it did allocate a buffer of the size specified in
the profile header.  The exploitability of this is almost zero; the address
space is released as soon as the PNG read completes.

Also clean up PNG_DEBUG compile of pngtest.c.

Signed-off-by: John Bowler <jbowler@acm.org>
 2016-08-10 15:35:09 -07:00
Glenn Randers-Pehrson
19fefd3a4b [libpng16] Return NULL from png_malloc_array() with a warning instead of calling 
png_error() on failure.  Reject oversized iCCP profile immediately.
 2016-08-10 12:09:22 -05:00
Glenn Randers-Pehrson
cdc0e74ee6 [libpng16] Bump version to 1.6.25beta01 2016-08-03 21:59:27 -05:00
Glenn Randers-Pehrson
b50d5cea2b [libpng16] Imported from libpng-1.6.24.tar 2016-08-03 21:32:26 -05:00
Glenn Randers-Pehrson
3d3c23b39f [libpng16] Bump version to 1.6.24rc04 2016-08-02 12:58:15 -05:00