Patch-ID# 114816-04


Download this patch from My Oracle Support

Your use of the firmware, software and any other materials contained in this update is subject to My Oracle Support Terms of Use, which may be viewed at My Oracle Support.
For further information on patching best practices and resources, please see the following links:
Copyright (c) 2012, Oracle and/or its affiliates. All rights reserved.

Keywords: security gnome libpng graphics
Synopsis: GNOME 2.0.0: libpng Patch
Date: Mar/19/2012


Install Requirements: NA

Solaris Release: 8

SunOS Release: 5.8

Unbundled Product: GNOME

Unbundled Release: 2.0.0

Xref: This patch available for x86 as patch 114817

Topic: GNOME 2.0.0: libpng Patch

Relevant Architectures: sparc

Bugs fixed with this patch:

Sun CR # Bug #
480908715143342
507522715219072
655590015396092
674516115506360
675526715512588
687497315584488
696529515653132


Changes incorporated in this version: 6745161 6755267 6874973 6965295

Patches accumulated and obsoleted by this patch:

Patches which conflict with this patch:

Patches required with this patch:

Obsoleted by:

Files included with this patch:

/usr/lib/pkgconfig/libpng.pc
/usr/lib/pkgconfig/libpng10.pc
/usr/lib/pkgconfig/libpng12.pc
/usr/lib/sparcv9/pkgconfig/libpng.pc
/usr/lib/sparcv9/pkgconfig/libpng10.pc (deleted)
/usr/lib/sparcv9/pkgconfig/libpng12.pc
/usr/sfw/bin/libpng-config
/usr/sfw/bin/libpng10-config
/usr/sfw/bin/libpng12-config
/usr/sfw/include/libpng10/png.h
/usr/sfw/include/libpng10/pngconf.h
/usr/sfw/include/libpng12/png.h
/usr/sfw/include/libpng12/pngconf.h
/usr/sfw/include/png.h
/usr/sfw/include/pngconf.h
/usr/sfw/lib/libpng.la
/usr/sfw/lib/libpng.so
/usr/sfw/lib/libpng.so.2
/usr/sfw/lib/libpng.so.2.1.0.15 (deleted)
/usr/sfw/lib/libpng.so.2.26.0 (deleted)
/usr/sfw/lib/libpng.so.2.43.0 (deleted)
/usr/sfw/lib/libpng.so.2.54.0
/usr/sfw/lib/libpng.so.3
/usr/sfw/lib/libpng.so.3.18.0 (deleted)
/usr/sfw/lib/libpng.so.3.35.0 (deleted)
/usr/sfw/lib/libpng.so.3.44.0
/usr/sfw/lib/libpng10.la
/usr/sfw/lib/libpng10.so
/usr/sfw/lib/libpng10.so.0
/usr/sfw/lib/libpng10.so.0.1.0.15 (deleted)
/usr/sfw/lib/libpng10.so.0.26.0 (deleted)
/usr/sfw/lib/libpng10.so.0.43.0 (deleted)
/usr/sfw/lib/libpng10.so.0.54.0
/usr/sfw/lib/libpng12.la
/usr/sfw/lib/libpng12.so
/usr/sfw/lib/libpng12.so.0
/usr/sfw/lib/libpng12.so.0.18.0 (deleted)
/usr/sfw/lib/libpng12.so.0.35.0 (deleted)
/usr/sfw/lib/libpng12.so.0.44.0
/usr/sfw/lib/sparcv9/libpng.so
/usr/sfw/lib/sparcv9/libpng.so.2
/usr/sfw/lib/sparcv9/libpng.so.2 (deleted)
/usr/sfw/lib/sparcv9/libpng.so.2.1.0.15 (deleted)
/usr/sfw/lib/sparcv9/libpng.so.2.43.0 (deleted)
/usr/sfw/lib/sparcv9/libpng.so.2.54.0
/usr/sfw/lib/sparcv9/libpng.so.3
/usr/sfw/lib/sparcv9/libpng.so.3.18.0 (deleted)
/usr/sfw/lib/sparcv9/libpng.so.3.35.0 (deleted)
/usr/sfw/lib/sparcv9/libpng.so.3.44.0
/usr/sfw/lib/sparcv9/libpng10.so
/usr/sfw/lib/sparcv9/libpng10.so (deleted)
/usr/sfw/lib/sparcv9/libpng10.so.0
/usr/sfw/lib/sparcv9/libpng10.so.0 (deleted)
/usr/sfw/lib/sparcv9/libpng10.so.0.1.0.15 (deleted)
/usr/sfw/lib/sparcv9/libpng10.so.0.43.0 (deleted)
/usr/sfw/lib/sparcv9/libpng10.so.0.54.0
/usr/sfw/lib/sparcv9/libpng12.so
/usr/sfw/lib/sparcv9/libpng12.so.0
/usr/sfw/lib/sparcv9/libpng12.so.0.18.0 (deleted)
/usr/sfw/lib/sparcv9/libpng12.so.0.35.0 (deleted)
/usr/sfw/lib/sparcv9/libpng12.so.0.44.0
/usr/sfw/share/man/man3/libpng.3
/usr/sfw/share/man/man3/libpngpf.3
/usr/sfw/share/man/man5/png.5

Problem Description:

6745161 problem with GNOME libraries
6755267 problem with GNOME libraries
6874973 problem with GNOME libraries
6965295 problem with GNOME libraries
 
(from 114816-03)
 
6555900 libpng needs to be upgraded due to security vulnerability (DoS to linking apps), CERT VU#684664
 
(from 114816-02)
 
5075227 multiple vulnerabilities in libpng [CAN-2004-0597]
 
(from 114816-01)
 
4809087 libpng buffer overflow


Patch Installation Instructions:
--------------------------------
 
Please refer to the man pages for instructions on using 'patchadd'
and 'patchrm' commands provided with Solaris.
 
The following example installs a patch to a standalone machine:
 
       example# patchadd /var/spool/patch/123456-07
 
The following example removes a patch from a standalone system:
 
       example# patchrm 123456-07
 
For additional examples please see the appropriate man pages. Any
other special or non-generic installation instructions should be
described below as special instructions.


Special Install Instructions:
-----------------------------
 
Logout and login back to GNOME after applying the patch.


README -- Last modified date: Saturday, November 10, 2012