Alerts This Week
Warning Icon 1 1,149
Alerts This Week
Warning Icon 1 1,149

Rocky Linux libpng Important Buffer Overflow Advisory RLSA-2026-0237

rocky
Calendar Grey January 9, 2026
Rockylinux Esm H88
Important security update for libpng on Rocky Linux addresses critical issues in image handling.
Important: libpng security update

Summary

An update is available for libpng. This update affects Rocky Linux 10. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RPMs

libpng-devel-2:1.6.40-8.el10_1.1.s390x.rpm

libpng-devel-debuginfo-2:1.6.40-8.el10_1.1.ppc64le.rpm

libpng-devel-2:1.6.40-8.el10_1.1.x86_64.rpm

libpng-debuginfo-2:1.6.40-8.el10_1.1.aarch64.rpm

libpng-2:1.6.40-8.el10_1.1.ppc64le.rpm

libpng-debugsource-2:1.6.40-8.el10_1.1.ppc64le.rpm

libpng-debuginfo-2:1.6.40-8.el10_1.1.s390x.rpm

libpng-2:1.6.40-8.el10_1.1.aarch64.rpm

libpng-devel-2:1.6.40-8.el10_1.1.ppc64le.rpm

libpng-2:1.6.40-8.el10_1.1.src.rpm

libpng-debugsource-2:1.6.40-8.el10_1.1.aarch64.rpm

libpng-2:1.6.40-8.el10_1.1.x86_64.rpm

libpng-devel-2:1.6.40-8.el10_1.1.aarch64.rpm

libpng-debugsource-2:1.6.40-8.el10_1.1.x86_64.rpm

libpng-debuginfo-2:1.6.40-8.el10_1.1.ppc64le.rpm

libpng-devel-debuginfo-2:1.6.40-8.el10_1.1.aarch64.rpm

libpng-debugsource-2:1.6.40-8.el10_1.1.s390x.rpm

libpng-devel-debuginfo-2:1.6.40-8.el10_1.1.s390x.rpm

libpng-debuginfo-2:1.6.40-8.el10_1.1.x86_64.rpm

libpng-2:1.6.40-8.el10_1.1.s390x.rpm

libpng-devel-debuginfo-2:1.6.40-8.el10_1.1.x86_64.rpm

References

No references

CVES

https://www.cve.org/CVERecord?id=CVE-2025-64720

https://www.cve.org/CVERecord?id=CVE-2025-65018

https://www.cve.org/CVERecord?id=CVE-2025-66293

Severity
important

Name: RLSA-2026:0237
Affected Products: Rocky Linux 10

Fixes

https://bugzilla.redhat.com/show_bug.cgi?id=2418711

https://bugzilla.redhat.com/show_bug.cgi?id=2416907

https://bugzilla.redhat.com/show_bug.cgi?id=2416904


Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here