Release date:
2026-05-06 08:08:17 UTC
Description:
- CVE-2026-33416: fix use-after-free via pointer aliasing in png_set_tRNS and png_set_PLTE
- CVE-2026-33636: fix out-of-bounds read/write in ARM NEON palette expansion
Updated packages:
-
libpng-1.6.37-12.el9_6.tuxcare.els7.i686.rpm
sha:29e1e5d6535663c1c8e4d1bc50c09b1564bf7ab4fd3a2dd3a1d1032ec306468b
-
libpng-1.6.37-12.el9_6.tuxcare.els7.x86_64.rpm
sha:b47745c4ec29e978739281529a4e2280b2007ca518cf3d636515fce407480e86
-
libpng-devel-1.6.37-12.el9_6.tuxcare.els7.i686.rpm
sha:5cb11e8290114a1e4ba9770a364829227fcaf1c231bd81996221e29908c4839f
-
libpng-devel-1.6.37-12.el9_6.tuxcare.els7.x86_64.rpm
sha:634ea69301699ce09e361df23869da3b6bd3154d06321549f76c017aa67e9c17
-
libpng-static-1.6.37-12.el9_6.tuxcare.els7.x86_64.rpm
sha:c4c2591f53bb125e95a4919eaa8b538e9cdd7479d1dbdef27880f6725435493f
-
libpng-tools-1.6.37-12.el9_6.tuxcare.els7.x86_64.rpm
sha:674115347dda97201d3ede7dd0acbb0d7520a159c77e83f155de51fdcda7f9ae
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
