Release date:
2026-05-16 00:29:24 UTC
Description:
- CVE-2026-34757: use-after-free in png_set_PLTE, png_set_tRNS, png_set_hIST,
png_set_text, png_set_sPLT and png_set_unknown_chunks when the caller passes
the pointer returned by the corresponding getter back to the setter
Updated packages:
-
libpng-1.6.37-12.el9_2.tuxcare.els8.i686.rpm
sha:d4b8dbec04dfd0d359cee052421efebc5b414d4b18594bed31bd53275de01709
-
libpng-1.6.37-12.el9_2.tuxcare.els8.x86_64.rpm
sha:41e84690f357ad31eaffca176fe0f38afd6ef13f1f747d6f3117f860a4fd8188
-
libpng-devel-1.6.37-12.el9_2.tuxcare.els8.i686.rpm
sha:c8eefc5c6aa6062d5a1a9fcc77e469034d571a93ead430db8ef056984906b71c
-
libpng-devel-1.6.37-12.el9_2.tuxcare.els8.x86_64.rpm
sha:8bb33ead43b99a05afec89300219fb3458cab4344638ff699442816d2bb5722c
-
libpng-static-1.6.37-12.el9_2.tuxcare.els8.x86_64.rpm
sha:7a590b0dccd8586a76dbbe45cd27f1e2df15ea40d67a0368b4eefe306c73ae1a
-
libpng-tools-1.6.37-12.el9_2.tuxcare.els8.x86_64.rpm
sha:4417120329dc48ac3616da3e11d083ceee0d5e01f846c71613ddafb42b4ca1f9
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
