Description:
The libpng packages contain a library of functions for creating and manipulating Portable Network Graphics (PNG) image format files.
Security Fix(es):
* libpng: LIBPNG buffer overflow (CVE-2025-64720)
* libpng: LIBPNG heap buffer overflow (CVE-2025-65018)
* libpng: LIBPNG out-of-bounds read in png_image_read_composite (CVE-2025-66293)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
| Architecture |
Package |
Checksum |
| aarch64 |
libpng-1.6.34-9.el8_10.aarch64.rpm |
25dbbdce1e297d8a3d58892c8dd9eb2efcbe7850857924d3ed01275269c2be71 |
| aarch64 |
libpng-devel-1.6.34-9.el8_10.aarch64.rpm |
b09ff7394bd8e4e49e18d49eeaf602d4c8e14379a17180d95163cc49587ba8ae |
| i686 |
libpng-1.6.34-9.el8_10.i686.rpm |
f92d998762d2ba1451a925da61efcd5060a326d2e6a8d58f3f993f3eedbfb22f |
| i686 |
libpng-devel-1.6.34-9.el8_10.i686.rpm |
fb98b32a5a18377388ed82b5bfa5e388e76c52390b1fb8ab5cfdeea23a6b8696 |
| ppc64le |
libpng-devel-1.6.34-9.el8_10.ppc64le.rpm |
38c3136f580c67f860d082345d3f9f6772249b25a6ad03fc3130851009a7f513 |
| ppc64le |
libpng-1.6.34-9.el8_10.ppc64le.rpm |
879e220c297e224a6274d135ffc335e59084456eb711a4276a87ca922eccb84c |
| s390x |
libpng-devel-1.6.34-9.el8_10.s390x.rpm |
c5ae470ec0e32a5201042b70ba04221eccdecd8031eaa3eda354da02fbc79186 |
| s390x |
libpng-1.6.34-9.el8_10.s390x.rpm |
f1862a0d4d75931209cc5e7f8298b09a850736f29497d7ba48fa088b207203ce |
| x86_64 |
libpng-devel-1.6.34-9.el8_10.x86_64.rpm |
2c88b0cbf6dbb77f5cdaf9bf3582a19f30bf006bba09419b1f8c345e00d06a77 |
| x86_64 |
libpng-1.6.34-9.el8_10.x86_64.rpm |
bee4424010167ac94b4af1c947d4d323751c6e4d4208957517ea06ed259d9569 |
