From d796c9dd933ab96ec83b9a634feedd5d32e1ba3f Mon Sep 17 00:00:00 2001
From: Timothy Pearson <kb9vqf@pearsoncomputing.net>
Date: Tue, 8 Nov 2011 12:31:36 -0600
Subject: Test conversion to TQt3 from Qt3
 8c6fc1f8e35fd264dd01c582ca5e7549b32ab731

---
 src/3rdparty/libpng/README.trolltech | 15 +++++++++++++++
 1 file changed, 15 insertions(+)
 create mode 100644 src/3rdparty/libpng/README.trolltech

(limited to 'src/3rdparty/libpng/README.trolltech')

diff --git a/src/3rdparty/libpng/README.trolltech b/src/3rdparty/libpng/README.trolltech
new file mode 100644
index 000000000..d443f80e3
--- /dev/null
+++ b/src/3rdparty/libpng/README.trolltech
@@ -0,0 +1,15 @@
+This is libPNG 1.2.5, patched by Trolltech to fix a serious security vulnerability (CERT VU#388984)
+
+The patch is as follows:
+
+--- //depot/qt/3/src/3rdparty/libpng/pngrutil.c#4       Thu Aug  5 15:37:03 CEST 2004
++++ /home/dev/qt/3/src/3rdparty/libpng/pngrutil.c  Thu Aug  5 15:37:03 CEST 2004
+@@ -1241,7 +1241,7 @@
+          /* Should be an error, but we can cope with it */
+          png_warning(png_ptr, "Missing PLTE before tRNS");
+       }
+-      else if (length > (png_uint_32)png_ptr->num_palette)
++      if (length > (png_uint_32)png_ptr->num_palette)
+       {
+          png_warning(png_ptr, "Incorrect tRNS chunk length");
+          png_crc_finish(png_ptr, length);
-- 
cgit v1.2.1