These buffer overflows in libpng were announced today: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8126
This patch updates libpng to 1.5.24, which is claimed to be free of the bugs. Leo Famulari (1): gnu: libpng: Add fixes for CVE-2015-8126. gnu/packages/image.scm | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) -- 2.6.2