Description:
The libpng packages contain a library of functions for creating and manipulating Portable Network Graphics (PNG) image format files.
Security Fix(es):
* libpng: LIBPNG buffer overflow (CVE-2025-64720)
* libpng: LIBPNG heap buffer overflow (CVE-2025-65018)
* libpng: LIBPNG out-of-bounds read in png_image_read_composite (CVE-2025-66293)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
| Architecture |
Package |
Checksum |
| aarch64 |
libpng-devel-1.6.37-12.el9_7.1.aarch64.rpm |
ba24c8c7d7167dfdd36d13e727a46d7cbd8d46b5a5d12627e8f6f6713d275177 |
| aarch64 |
libpng-1.6.37-12.el9_7.1.aarch64.rpm |
df0bc2fa5c63f3915e727378293ce94c20f7f01c23e4e1cde366062167b30fb9 |
| i686 |
libpng-devel-1.6.37-12.el9_7.1.i686.rpm |
4242e55115da7d6f984351c7eaf826405b018d7fb5f28cb96241b96c079494b4 |
| i686 |
libpng-1.6.37-12.el9_7.1.i686.rpm |
d7f3129b8eb4a493b4e4b5987d1f349c8daf68d2c13434e4301b8da70d0be054 |
| ppc64le |
libpng-1.6.37-12.el9_7.1.ppc64le.rpm |
13592233649d87e6bb893a08a1a472817197a42a0ff936bd85feb2c4459db292 |
| ppc64le |
libpng-devel-1.6.37-12.el9_7.1.ppc64le.rpm |
ef0ba289265ec52cc710d2340636cadc87d99573a23614777ecc163f65e9324f |
| s390x |
libpng-1.6.37-12.el9_7.1.s390x.rpm |
3dc590a0737fa20bc210653f9e6161e28d3cf432f69ab1f0d5d95e6b0c864143 |
| s390x |
libpng-devel-1.6.37-12.el9_7.1.s390x.rpm |
4e2e19716a709f29c96094afbf47aeffc5762aebfe3f34bd3be6dc580defe6d3 |
| x86_64 |
libpng-1.6.37-12.el9_7.1.x86_64.rpm |
2613a520b6d7a2059bfcec4180700fece217280aca309338cb6d547c2595119c |
| x86_64 |
libpng-devel-1.6.37-12.el9_7.1.x86_64.rpm |
d9a65ac378db5a711478ad44410b5831af9f88885e14cb40099436c8789552e2 |
