[libpng14] Mention CVE-2017-12652 in CHANGES.

author: Glenn Randers-Pehrson <glennrp at users.sourceforge.net> 2017-09-03 09:33:23 -0500
committer: Glenn Randers-Pehrson <glennrp at users.sourceforge.net> 2017-09-03 09:33:23 -0500
commit: c334bdf793c04920b5eb6c1c7fd5a022cd02b8e9 (patch)
tree: 0ca479371143d5ba976c46f5bd19d4fb3929964c
parent: 3236606dea78234fc3048a386d147d55ac865936 (diff)
download: libpng-c334bdf793c04920b5eb6c1c7fd5a022cd02b8e9.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/CHANGES b/CHANGES
index 19eb7b975..9572f5233 100644
--- a/CHANGES
+++ b/CHANGES
@@ -3044,6 +3044,7 @@ version 1.4.20 [December 29, 2016]
     and patch by Patrick Keshishian, CVE-2016-10087).
 
 version 1.4.21beta [August 9, 2017]
+  Added png_check_chunk_length() function (Fixes CVE-2017-12652).
   Moved chunk-name and chunk-length checks into PNG_EXTERN private
     png_check_chunk_name() and png_check_chunk_length() functions
     (Suggested by Max Stepin).
author	Glenn Randers-Pehrson <glennrp at users.sourceforge.net>	2017-09-03 09:33:23 -0500
committer	Glenn Randers-Pehrson <glennrp at users.sourceforge.net>	2017-09-03 09:33:23 -0500
commit	c334bdf793c04920b5eb6c1c7fd5a022cd02b8e9 (patch)
tree	0ca479371143d5ba976c46f5bd19d4fb3929964c
parent	3236606dea78234fc3048a386d147d55ac865936 (diff)
download	libpng-c334bdf793c04920b5eb6c1c7fd5a022cd02b8e9.tar.gz