Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package libpng16 for openSUSE:Factory checked in at 2025-12-08 11:52:32 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/libpng16 (Old) and /work/SRC/openSUSE:Factory/.libpng16.new.1939 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "libpng16" Mon Dec 8 11:52:32 2025 rev:60 rq:1321241 version:1.6.52 Changes: -------- --- /work/SRC/openSUSE:Factory/libpng16/libpng16.changes 2025-11-28 16:50:57.317290996 +0100 +++ /work/SRC/openSUSE:Factory/.libpng16.new.1939/libpng16.changes 2025-12-08 11:52:35.098045526 +0100 @@ -1,0 +2,14 @@ +Fri Dec 5 08:49:45 UTC 2025 - Petr Gajdos <[email protected]> + +- version update to 1.6.52 + * Fixed CVE-2025-66293 (high severity): + Out-of-bounds read in `png_image_read_composite`. + (Reported by flyfish101 <[email protected]>.) + * Fixed the Paeth filter handling in the RISC-V RVV implementation. + (Reported by Filip Wasil; fixed by Liang Junzhao.) + * Improved the performance of the RISC-V RVV implementation. + (Contributed by Liang Junzhao.) + * Added allocation failure fuzzing to oss-fuzz. + (Contributed by Philippe Antoine.) + +------------------------------------------------------------------- Old: ---- libpng-1.6.51.tar.xz New: ---- libpng-1.6.52.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ libpng16.spec ++++++ --- /var/tmp/diff_new_pack.z3C6vn/_old 2025-12-08 11:52:35.650068654 +0100 +++ /var/tmp/diff_new_pack.z3C6vn/_new 2025-12-08 11:52:35.658068989 +0100 @@ -20,7 +20,7 @@ %define asan_build 0 %define major 1 %define minor 6 -%define micro 51 +%define micro 52 %define branch %{major}%{minor} %define libname libpng%{branch}-%{branch} %define debug_package_requires %{libname} = %{version}-%{release} @@ -30,7 +30,7 @@ Summary: Library for the Portable Network Graphics Format (PNG) License: libpng-2.0 URL: http://www.libpng.org/pub/png/libpng.html -Source0: https://prdownloads.sourceforge.net/libpng/libpng-%{version}.tar.xz +Source0: https://github.com/pnggroup/libpng/archive/refs/tags/v%{version}.tar.gz#/libpng-%{version}.tar.gz Source2: libpng16.keyring Source3: rpm-macros.libpng-tools Source4: baselibs.conf
