Oracle Linux Security Advisory ELSA-2026-0238 http://linux.oracle.com/errata/ELSA-2026-0238.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: libpng-1.6.37-12.el9_7.1.i686.rpm libpng-1.6.37-12.el9_7.1.x86_64.rpm libpng-devel-1.6.37-12.el9_7.1.i686.rpm libpng-devel-1.6.37-12.el9_7.1.x86_64.rpm aarch64: libpng-1.6.37-12.el9_7.1.aarch64.rpm libpng-devel-1.6.37-12.el9_7.1.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates/libpng-1.6.37-12.el9_7.1.src.rpm Related CVEs: CVE-2025-64720 CVE-2025-65018 CVE-2025-66293 Description of changes: [2:1.6.37-12.1] - CVE-2025-64720: buffer overflow (RHEL-131580) - CVE-2025-65018: heap buffer overflow (RHEL-131593) - CVE-2025-66293: out-of-bounds read in png_image_read_composite (RHEL-133287) _______________________________________________ El-errata mailing list [email protected] https://oss.oracle.com/mailman/listinfo/el-errata
