Author: Anibal Monsalve Salazar
Revision Date: 2014-07-26 03:27:02 UTC

* Merge 1.2.50-1ubuntu3.
  Closes: #689092.
* Use defaults for dh_builddeb.
* Remove debian/source/options.
* Refresh patches.

Author: Anibal Monsalve Salazar
Revision Date: 2014-07-26 03:27:02 UTC

* Merge 1.2.50-1ubuntu3.
  Closes: #689092.
* Use defaults for dh_builddeb.
* Remove debian/source/options.
* Refresh patches.

Author: Anibal Monsalve Salazar
Revision Date: 2014-07-26 03:27:02 UTC

* Merge 1.2.50-1ubuntu3.
  Closes: #689092.
* Use defaults for dh_builddeb.
* Remove debian/source/options.
* Refresh patches.

Author: Nobuhiro Iwamatsu
Revision Date: 2012-07-05 13:18:14 UTC

New upstream release.

Author: Anibal Monsalve Salazar
Revision Date: 2012-04-09 12:08:13 UTC

* New upstream version 1.2.49
  - Fix CVE-2011-3048 (memory corruption flaw)
    Closes: 667475
  - Don't crash with electric fence memory debugger
    Closes: 668082
* Merged upstream: 02-665208-CVE-2012-3045.patch

Author: Moritz Muehlenhoff
Revision Date: 2012-04-04 18:08:48 UTC

CVE-2011-3048

Author: Nobuhiro Iwamatsu
Revision Date: 2011-07-16 05:13:23 UTC

* Apply upstream patch to 1-byte uninitialized memory reference in
  png_format_buffer(). (Closes: #632786, CVE-2011-2501)
* Apply upstream patch to buffer overwrite in png_rgb_to_gray.
  (Closes: #633871, CVE-2011-2690)
* Apply upstream patch to crash in png_default_error due to use of
  NULL Pointer. (Closes: #633871, CVE-2011-2691)
* Apply upstream patch to memory corruption when handling empty sCAL chunks.
  (Closes: #633871, CVE-2011-2692)