Patch-ID# 114816-04 NOTE: *********************************************************************** READ THE TERMS OF THE AGREEMENT ("AGREEMENT") IN THE LEGAL_LICENSE.TXT FILE CAREFULLY BEFORE USING THIS SOFTWARE. BY USING THE SOFTWARE, YOU AGREE TO THE TERMS OF THIS AGREEMENT. IF YOU DO NOT AGREE TO ALL OF THE TERMS, PROMPTLY DESTROY THE UNUSED SOFTWARE. *********************************************************************** For further information on patching best practices and resources, please see the Oracle Technology Network Patching Center: http://www.oracle.com/technetwork/systems/patches *********************************************************************** Copyright (c) 2012, Oracle and/or its affiliates. All rights reserved. *********************************************************************** Keywords: security gnome libpng graphics Synopsis: GNOME 2.0.0: libpng Patch Date: Mar/19/2012 Install Requirements: NA Solaris Release: 8 SunOS Release: 5.8 Unbundled Product: GNOME Unbundled Release: 2.0.0 Xref: This patch available for x86 as patch 114817 Topic: GNOME 2.0.0: libpng Patch Relevant Architectures: sparc BugId's fixed with this patch: 4809087 5075227 6555900 6745161 6755267 6874973 6965295 Changes incorporated in this version: 6745161 6755267 6874973 6965295 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: /usr/lib/pkgconfig/libpng.pc /usr/lib/pkgconfig/libpng10.pc /usr/lib/pkgconfig/libpng12.pc /usr/lib/sparcv9/pkgconfig/libpng.pc /usr/lib/sparcv9/pkgconfig/libpng10.pc (deleted) /usr/lib/sparcv9/pkgconfig/libpng12.pc /usr/sfw/bin/libpng-config /usr/sfw/bin/libpng10-config /usr/sfw/bin/libpng12-config /usr/sfw/include/libpng10/png.h /usr/sfw/include/libpng10/pngconf.h /usr/sfw/include/libpng12/png.h /usr/sfw/include/libpng12/pngconf.h /usr/sfw/include/png.h /usr/sfw/include/pngconf.h /usr/sfw/lib/libpng.la /usr/sfw/lib/libpng.so /usr/sfw/lib/libpng.so.2 /usr/sfw/lib/libpng.so.2.1.0.15 (deleted) /usr/sfw/lib/libpng.so.2.26.0 (deleted) /usr/sfw/lib/libpng.so.2.43.0 (deleted) /usr/sfw/lib/libpng.so.2.54.0 /usr/sfw/lib/libpng.so.3 /usr/sfw/lib/libpng.so.3.18.0 (deleted) /usr/sfw/lib/libpng.so.3.35.0 (deleted) /usr/sfw/lib/libpng.so.3.44.0 /usr/sfw/lib/libpng10.la /usr/sfw/lib/libpng10.so /usr/sfw/lib/libpng10.so.0 /usr/sfw/lib/libpng10.so.0.1.0.15 (deleted) /usr/sfw/lib/libpng10.so.0.26.0 (deleted) /usr/sfw/lib/libpng10.so.0.43.0 (deleted) /usr/sfw/lib/libpng10.so.0.54.0 /usr/sfw/lib/libpng12.la /usr/sfw/lib/libpng12.so /usr/sfw/lib/libpng12.so.0 /usr/sfw/lib/libpng12.so.0.18.0 (deleted) /usr/sfw/lib/libpng12.so.0.35.0 (deleted) /usr/sfw/lib/libpng12.so.0.44.0 /usr/sfw/lib/sparcv9/libpng.so /usr/sfw/lib/sparcv9/libpng.so.2 /usr/sfw/lib/sparcv9/libpng.so.2 (deleted) /usr/sfw/lib/sparcv9/libpng.so.2.1.0.15 (deleted) /usr/sfw/lib/sparcv9/libpng.so.2.43.0 (deleted) /usr/sfw/lib/sparcv9/libpng.so.2.54.0 /usr/sfw/lib/sparcv9/libpng.so.3 /usr/sfw/lib/sparcv9/libpng.so.3.18.0 (deleted) /usr/sfw/lib/sparcv9/libpng.so.3.35.0 (deleted) /usr/sfw/lib/sparcv9/libpng.so.3.44.0 /usr/sfw/lib/sparcv9/libpng10.so /usr/sfw/lib/sparcv9/libpng10.so (deleted) /usr/sfw/lib/sparcv9/libpng10.so.0 /usr/sfw/lib/sparcv9/libpng10.so.0 (deleted) /usr/sfw/lib/sparcv9/libpng10.so.0.1.0.15 (deleted) /usr/sfw/lib/sparcv9/libpng10.so.0.43.0 (deleted) /usr/sfw/lib/sparcv9/libpng10.so.0.54.0 /usr/sfw/lib/sparcv9/libpng12.so /usr/sfw/lib/sparcv9/libpng12.so.0 /usr/sfw/lib/sparcv9/libpng12.so.0.18.0 (deleted) /usr/sfw/lib/sparcv9/libpng12.so.0.35.0 (deleted) /usr/sfw/lib/sparcv9/libpng12.so.0.44.0 /usr/sfw/share/man/man3/libpng.3 /usr/sfw/share/man/man3/libpngpf.3 /usr/sfw/share/man/man5/png.5 Problem Description: 6745161 problem with GNOME libraries 6755267 problem with GNOME libraries 6874973 problem with GNOME libraries 6965295 problem with GNOME libraries (from 114816-03) 6555900 libpng needs to be upgraded due to security vulnerability (DoS to linking apps), CERT VU#684664 (from 114816-02) 5075227 multiple vulnerabilities in libpng [CAN-2004-0597] (from 114816-01) 4809087 libpng buffer overflow Patch Installation Instructions: -------------------------------- Please refer to the man pages for instructions on using 'patchadd' and 'patchrm' commands provided with Solaris. The following example installs a patch to a standalone machine: example# patchadd /var/spool/patch/123456-07 The following example removes a patch from a standalone system: example# patchrm 123456-07 For additional examples please see the appropriate man pages. Any other special or non-generic installation instructions should be described below as special instructions. Special Install Instructions: ----------------------------- Logout and login back to GNOME after applying the patch. README -- Last modified date: Monday, March 19, 2012