ELSA-2026-26348

ULN >
Oracle Linux Errata repository >
ELSA-2026-26348

ELSA-2026-26348 - libpng12 security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2026-06-16

Description

[1.2.57-7]
- fix CVE-2026-33416: use-after-free via pointer aliasing in png_set_tRNS and png_set_PLTE (RHEL-161345)

Related CVEs

CVE-2026-33416

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	libpng12-1.2.57-7.el8_10.src.rpm	44c55fde3aa10669d819db6ac8db2bf037ced6e83afbb3898dc318bc39ada8c8	-	ol8_aarch64_appstream
	libpng12-1.2.57-7.el8_10.aarch64.rpm	b79a26b4cad1fcce5b43a95ec4423897332dbb328157dff84b08fa93786e689e	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	libpng12-1.2.57-7.el8_10.src.rpm	44c55fde3aa10669d819db6ac8db2bf037ced6e83afbb3898dc318bc39ada8c8	-	ol8_x86_64_appstream
	libpng12-1.2.57-7.el8_10.i686.rpm	a58e6179f8c46c988fafbf672f5e144b8a0b1e0c0c58f9b409732f3df621c940	-	ol8_x86_64_appstream
	libpng12-1.2.57-7.el8_10.x86_64.rpm	ccf8a6a43eff1565c02869f415d7c66cb6130787537d5b6c2549a466c035ba27	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691