|
autotrace has not received updates for many years. This leads to the
need for various fixes including some severe CVE ones.
Also, note that the libpng 1.5+ fix patch that was already being
applied is now incorporated into the source files that already comes
with the package instead of being downloaded.
References
==========
CVE-2013-1953
-------------
http://cve.mitre.org/cgi-bin/cvename.cgi?name=2013-1953
CVE-2016-7392
-------------
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7392
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=837599
Fix: fails to build with libpng 1.5+
------------------------------------
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=662273
https://sourceforge.net/mailarchive/forum.php?thread_name=01e601cbc22e%24f45d7200%24dd185600%24%40acm.org&forum_name=png-mng-implement
Fix: fails on output-swf
------------------------
http://bugs.gentoo.org/122035
Fix warning: underquoted definition of AM_PATH_AUTOTRACE
--------------------------------------------------------
https://bugzilla.redhat.com/477980
|