Release date:
2026-05-16 10:49:51 UTC
Description:
- CVE-2026-34757: use-after-free in png_set_PLTE, png_set_tRNS, png_set_hIST,
png_set_text, png_set_sPLT and png_set_unknown_chunks when the caller passes
the pointer returned by the corresponding getter back to the setter
Updated packages:
-
libpng-1.6.37-12.el9_6.tuxcare.els8.i686.rpm
sha:8df5a1d9149ecc6ceaf437d62617cb5fa9c4de94c943943fce1be8413533e8c1
-
libpng-1.6.37-12.el9_6.tuxcare.els8.x86_64.rpm
sha:6114103f5946548fe7edf123bf9abf11742442a5f8ad075eec12e87dc821f4a9
-
libpng-devel-1.6.37-12.el9_6.tuxcare.els8.i686.rpm
sha:1d853497a6f68a489651744f85b34071bb267037bea92ffc02f46731550899fc
-
libpng-devel-1.6.37-12.el9_6.tuxcare.els8.x86_64.rpm
sha:6d176550b7d3da0c23353a5b24a79aa1d95339fe0ec64842c09e3cc5c8f27151
-
libpng-static-1.6.37-12.el9_6.tuxcare.els8.x86_64.rpm
sha:fc4c1c13f5896b552eda0ab94cb13c0a019eb1bf46567a4b4196cfa0a8f6d665
-
libpng-tools-1.6.37-12.el9_6.tuxcare.els8.x86_64.rpm
sha:35b33490ff0500ff4417e126b2cf8d7f524f5ab0c1e543bfe933d1c1da6718c2
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
