Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 531
Alerts This Week
Warning Icon 1 531

Fedora 43: libpng Critical Buffer Overflow Fixes FEDORA-2025-6af3ed0ae3

fedora
Calendar Grey December 2, 2025
Scroller Fedora Esm H88
Critical updates for libpng in Fedora 43 address several security issues, ensuring image manipulation safety.
several security fixes

Summary

The libpng package contains a library of functions for creating and

manipulating PNG (Portable Network Graphics) image format files. PNG

is a bit-mapped graphics format similar to the GIF format. PNG was

created to replace the GIF format, since GIF uses a patented data

compression algorithm.

Libpng should be installed if you need to manipulate PNG format image

files.

Update Information:

several security fixes

Change Log

* Thu Nov 27 2025 Michal Hlavinka - 2:1.6.51-1 - updated to 1.6.51 (#2416525)

References


[ 1 ] Bug #2417464 - CVE-2025-64720 libpng: LIBPNG buffer overflow [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2417464 [ 2 ] Bug #2417480 - CVE-2025-65018 libpng: LIBPNG heap buffer overflow [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2417480 [ 3 ] Bug #2417487 - CVE-2025-64506 libpng: LIBPNG heap buffer over-read [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2417487

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-6af3ed0ae3' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: libpng
Product: Fedora 43
Version: 1.6.51
Release: 1.fc43
Summary: A library of functions for manipulating PNG image format files

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.