[ALSA-2026:3031] Important: libpng15 security update
Type:
security
Severity:
important
Release date:
2026-02-26
Description:
The libpng15 package provides libpng 1.5, an older version of the libpng. library for manipulating PNG (Portable Network Graphics) image format files. This version should be used only if you are unable to use the current version of libpng. Security Fix(es): * libpng: LIBPNG has a heap buffer overflow in png_set_quantize (CVE-2026-25646) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 libpng15-1.5.30-14.el9_7.1.aarch64.rpm 18d68a1abe75fd3862a3d56b1bca5b5fc54a2f70083ba74c55cf4a92fa7f91f3
i686 libpng15-1.5.30-14.el9_7.1.i686.rpm dc4bdfd83f6384336f8005d2ad250fed9db62c481faf8799f9cee94014c4ef0e
ppc64le libpng15-1.5.30-14.el9_7.1.ppc64le.rpm b361337c48a8030787590fac5c2c8239a4ef501cf3c33e6bd317b069596b8230
s390x libpng15-1.5.30-14.el9_7.1.s390x.rpm 6432ea27082233e3be1bac474ed3f2584238606a1e475a93b6ea5226ab8555b1
x86_64 libpng15-1.5.30-14.el9_7.1.x86_64.rpm e0dd95df311be7e755f92e83d58a872eb81aff0a7f921eafa9194d5e3f20e26a
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.