ELSA-2026-26347

ULN >
Oracle Linux Errata repository >
ELSA-2026-26347

ELSA-2026-26347 - libpng15 security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2026-06-16

Description

[1.5.30-9]
- fix CVE-2026-33416: use-after-free via pointer aliasing in png_set_tRNS and png_set_PLTE (RHEL-161346)

Related CVEs

CVE-2026-33416

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	libpng15-1.5.30-9.el8_10.src.rpm	76d292c2b7431c116fe967da6617e6d85c3e19c08a8a48cca298b1cbc17b99ec	-	ol8_aarch64_appstream
	libpng15-1.5.30-9.el8_10.aarch64.rpm	3afcffc43092924ab3273e5294a07479ab75bce9dee4b50b90d7c038a33c709a	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	libpng15-1.5.30-9.el8_10.src.rpm	76d292c2b7431c116fe967da6617e6d85c3e19c08a8a48cca298b1cbc17b99ec	-	ol8_x86_64_appstream
	libpng15-1.5.30-9.el8_10.i686.rpm	b6f840e310feba8ae100daee0590df356bc58849be8cabac058a7dd424aa1d6d	-	ol8_x86_64_appstream
	libpng15-1.5.30-9.el8_10.x86_64.rpm	c5cd5ecc29531f7e7ac2c68d6e771db61d36a95effb514bca975f65f23975f12	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691