Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.0
Libpng on Red Hat Systems: Potential Data Exposure
RHSA-2026:3969
Summary
A security update is available for libpng on Red Hat systems, which could allow an attacker to steal sensitive data. This affects systems running various Red Hat products. It's recommended to apply the update as soon as possible to ensure the security of your systems.
What to do
- Update redhat libpng15 to version 0:1.5.30-14.el9_4.1.
- Update redhat libpng15-debuginfo to version 0:1.5.30-14.el9_4.1.
- Update redhat libpng15-debugsource to version 0:1.5.30-14.el9_4.1.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| redhat | libpng15 | <= 0:1.5.30-14.el9_4.1 | 0:1.5.30-14.el9_4.1 |
| redhat | libpng15-debuginfo | <= 0:1.5.30-14.el9_4.1 | 0:1.5.30-14.el9_4.1 |
| redhat | libpng15-debugsource | <= 0:1.5.30-14.el9_4.1 | 0:1.5.30-14.el9_4.1 |
Original title
Red Hat Security Advisory: libpng15 security update
osv CVSS3.1
7.0
- https://access.redhat.com/errata/RHSA-2026:3969 Vendor Advisory
- https://access.redhat.com/security/updates/classification/#important Third Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2438542 Third Party Advisory
- https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_3969.j... Vendor Advisory
- https://access.redhat.com/security/cve/CVE-2026-25646 Third Party Advisory
- https://www.cve.org/CVERecord?id=CVE-2026-25646 Vendor Advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-25646 Vendor Advisory
- http://www.openwall.com/lists/oss-security/2026/02/09/7 Third Party Advisory
- https://github.com/pnggroup/libpng/commit/01d03b8453eb30ade759cd45c707e5a1c7277d... Third Party Advisory
- https://github.com/pnggroup/libpng/security/advisories/GHSA-g8hp-mq4h-rqm3 Third Party Advisory
Published: 9 Mar 2026 · Updated: 13 Mar 2026 · First seen: 9 Mar 2026