Red Hat Customer Portal

Skip to main content

Security Advisory Moderate: libpng security update

Advisory: RHSA-2015:2596-1
Type: Security Advisory
Severity: Moderate
Issued on: 2015-12-09
Last updated on: 2015-12-09
Affected Products: Red Hat Enterprise Linux Desktop (v. 7)
Red Hat Enterprise Linux HPC Node (v. 7)
Red Hat Enterprise Linux HPC Node EUS (v. 7.2)
Red Hat Enterprise Linux Server (v. 7)
Red Hat Enterprise Linux Server AUS (v. 7.2)
Red Hat Enterprise Linux Server EUS (v. 7.2)
Red Hat Enterprise Linux Workstation (v. 7)
CVEs (cve.mitre.org): CVE-2015-8126
CVE-2015-8472

Details

Updated libpng packages that fix one security issue are now available
for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having Moderate security
impact. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available from the CVE link in the
References section.

The libpng packages contain a library of functions for creating and
manipulating PNG (Portable Network Graphics) image format files.

It was discovered that the png_get_PLTE() and png_set_PLTE() functions of
libpng did not correctly calculate the maximum palette sizes for bit depths
of less than 8. In case an application tried to use these functions in
combination with properly calculated palette sizes, this could lead to a
buffer overflow or out-of-bounds reads. An attacker could exploit this to
cause a crash or potentially execute arbitrary code by tricking an
unsuspecting user into processing a specially crafted PNG image. However,
the exact impact is dependent on the application using the library.
(CVE-2015-8126, CVE-2015-8472)

All libpng users are advised to upgrade to these updated packages, which
contain a backported patch to correct this issue.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Updated packages

Red Hat Enterprise Linux Desktop (v. 7)

SRPMS:
libpng-1.5.13-7.el7_2.src.rpm     MD5: 9bf8be4d0ebf82838bf05f3a57d0c5e3
SHA-256: eaa6784a0a8ce9079ed3ca820edc740f4600073840a777b971da697873edc9fa
 
x86_64:
libpng-1.5.13-7.el7_2.i686.rpm     MD5: 2f7f150a6fc540eb9b963777801f5488
SHA-256: 6deaca2953a4895e18a5c3ff62fb7c573a53117e61ebba08acea77b380368904
libpng-1.5.13-7.el7_2.x86_64.rpm     MD5: e93cc87dae9dc281a47c4f98188296cc
SHA-256: ac746483068b338b15da35721edbac7ae07e6149f938e0ebd5eea0e6b02e7d0b
libpng-debuginfo-1.5.13-7.el7_2.i686.rpm     MD5: dd37f4df9b5dcf2921146ef9108c8fa1
SHA-256: ca1f54a2bd69d0496f9c3611bb52d8d5f9a3757f2fd527a780dc786cea347731
libpng-debuginfo-1.5.13-7.el7_2.x86_64.rpm     MD5: 0aadaf0af39d09e5b74621e3f8004cfe
SHA-256: 80ece28ef0eb2aeaa26ab7275a2380cc910375432cec822d90f5ad45a0af10fa
libpng-devel-1.5.13-7.el7_2.i686.rpm     MD5: 82bc742f7e84062933ae0480cdd4cc8c
SHA-256: 36ac83c82d6ab6847264519522cb182b9a4b7d6a4f88e76b511cf6df9896779d
libpng-devel-1.5.13-7.el7_2.x86_64.rpm     MD5: 6b4022d5ed55fe6a119e4d20c8fcc8d4
SHA-256: d57709da1e9135db4c0565571c58ede059296f6d5ba6e72f907197f92c6ddd72
libpng-static-1.5.13-7.el7_2.i686.rpm     MD5: e4188bffd0597f66b3fc028508f2fb68
SHA-256: af95d7ef82cfca220917bcda2a6bc72eae7280cdb6cd59ff28c5f495f006c9f5
libpng-static-1.5.13-7.el7_2.x86_64.rpm     MD5: 2f3a8d437a01442f51cf23cbf0b89507
SHA-256: 6e4a00c8d0b7e1fabada75737d5e9fd12119a636a65c8b0d298b3cc695824312
 
Red Hat Enterprise Linux HPC Node (v. 7)

SRPMS:
libpng-1.5.13-7.el7_2.src.rpm     MD5: 9bf8be4d0ebf82838bf05f3a57d0c5e3
SHA-256: eaa6784a0a8ce9079ed3ca820edc740f4600073840a777b971da697873edc9fa
 
x86_64:
libpng-1.5.13-7.el7_2.i686.rpm     MD5: 2f7f150a6fc540eb9b963777801f5488
SHA-256: 6deaca2953a4895e18a5c3ff62fb7c573a53117e61ebba08acea77b380368904
libpng-1.5.13-7.el7_2.x86_64.rpm     MD5: e93cc87dae9dc281a47c4f98188296cc
SHA-256: ac746483068b338b15da35721edbac7ae07e6149f938e0ebd5eea0e6b02e7d0b
libpng-debuginfo-1.5.13-7.el7_2.i686.rpm     MD5: dd37f4df9b5dcf2921146ef9108c8fa1
SHA-256: ca1f54a2bd69d0496f9c3611bb52d8d5f9a3757f2fd527a780dc786cea347731
libpng-debuginfo-1.5.13-7.el7_2.x86_64.rpm     MD5: 0aadaf0af39d09e5b74621e3f8004cfe
SHA-256: 80ece28ef0eb2aeaa26ab7275a2380cc910375432cec822d90f5ad45a0af10fa
libpng-devel-1.5.13-7.el7_2.i686.rpm     MD5: 82bc742f7e84062933ae0480cdd4cc8c
SHA-256: 36ac83c82d6ab6847264519522cb182b9a4b7d6a4f88e76b511cf6df9896779d
libpng-devel-1.5.13-7.el7_2.x86_64.rpm     MD5: 6b4022d5ed55fe6a119e4d20c8fcc8d4
SHA-256: d57709da1e9135db4c0565571c58ede059296f6d5ba6e72f907197f92c6ddd72
libpng-static-1.5.13-7.el7_2.i686.rpm     MD5: e4188bffd0597f66b3fc028508f2fb68
SHA-256: af95d7ef82cfca220917bcda2a6bc72eae7280cdb6cd59ff28c5f495f006c9f5
libpng-static-1.5.13-7.el7_2.x86_64.rpm     MD5: 2f3a8d437a01442f51cf23cbf0b89507
SHA-256: 6e4a00c8d0b7e1fabada75737d5e9fd12119a636a65c8b0d298b3cc695824312
 
Red Hat Enterprise Linux HPC Node EUS (v. 7.2)

SRPMS:
libpng-1.5.13-7.el7_2.src.rpm     MD5: 9bf8be4d0ebf82838bf05f3a57d0c5e3
SHA-256: eaa6784a0a8ce9079ed3ca820edc740f4600073840a777b971da697873edc9fa
 
x86_64:
libpng-1.5.13-7.el7_2.i686.rpm     MD5: 2f7f150a6fc540eb9b963777801f5488
SHA-256: 6deaca2953a4895e18a5c3ff62fb7c573a53117e61ebba08acea77b380368904
libpng-1.5.13-7.el7_2.x86_64.rpm     MD5: e93cc87dae9dc281a47c4f98188296cc
SHA-256: ac746483068b338b15da35721edbac7ae07e6149f938e0ebd5eea0e6b02e7d0b
libpng-debuginfo-1.5.13-7.el7_2.i686.rpm     MD5: dd37f4df9b5dcf2921146ef9108c8fa1
SHA-256: ca1f54a2bd69d0496f9c3611bb52d8d5f9a3757f2fd527a780dc786cea347731
libpng-debuginfo-1.5.13-7.el7_2.x86_64.rpm     MD5: 0aadaf0af39d09e5b74621e3f8004cfe
SHA-256: 80ece28ef0eb2aeaa26ab7275a2380cc910375432cec822d90f5ad45a0af10fa
libpng-devel-1.5.13-7.el7_2.i686.rpm     MD5: 82bc742f7e84062933ae0480cdd4cc8c
SHA-256: 36ac83c82d6ab6847264519522cb182b9a4b7d6a4f88e76b511cf6df9896779d
libpng-devel-1.5.13-7.el7_2.x86_64.rpm     MD5: 6b4022d5ed55fe6a119e4d20c8fcc8d4
SHA-256: d57709da1e9135db4c0565571c58ede059296f6d5ba6e72f907197f92c6ddd72
libpng-static-1.5.13-7.el7_2.i686.rpm     MD5: e4188bffd0597f66b3fc028508f2fb68
SHA-256: af95d7ef82cfca220917bcda2a6bc72eae7280cdb6cd59ff28c5f495f006c9f5
libpng-static-1.5.13-7.el7_2.x86_64.rpm     MD5: 2f3a8d437a01442f51cf23cbf0b89507
SHA-256: 6e4a00c8d0b7e1fabada75737d5e9fd12119a636a65c8b0d298b3cc695824312
 
Red Hat Enterprise Linux Server (v. 7)

SRPMS:
libpng-1.5.13-7.el7_2.src.rpm     MD5: 9bf8be4d0ebf82838bf05f3a57d0c5e3
SHA-256: eaa6784a0a8ce9079ed3ca820edc740f4600073840a777b971da697873edc9fa
 
PPC:
libpng-1.5.13-7.el7_2.ppc.rpm     MD5: fe6128212a2e2793facbca44bb0bf1e2
SHA-256: ca2528a95b33bf401afcaaf24c1d5ef2d0d2bc71085c9173905bb94016c0269c
libpng-1.5.13-7.el7_2.ppc64.rpm     MD5: 485c747f9e87c05c9719500ab56f2b77
SHA-256: da1ad7e2f0080ce7146ab780fe971f7789eb84b31401263f8a9b7a06578db029
libpng-debuginfo-1.5.13-7.el7_2.ppc.rpm     MD5: f184a5b19d1482b063c9a9bc46851ab0
SHA-256: 6fb1154875a1431790a8f9d15af1ab7a466ad57fbd38d97a2da9b68430020668
libpng-debuginfo-1.5.13-7.el7_2.ppc64.rpm     MD5: 611c6ebd6d6c12f2ab49aff79a57d50c
SHA-256: 1775ececed8af7814e50dbb0c80afd4f93c97e9f20d5c4f31bcdaab44f3aa297
libpng-devel-1.5.13-7.el7_2.ppc.rpm     MD5: 94c844039436e21fb36844e79c5512cd
SHA-256: 65d0de28f6974dd9d10d1b182e4a045c3de59df33a79097cd37b999940d44984
libpng-devel-1.5.13-7.el7_2.ppc64.rpm     MD5: 718b4ad038bf8a1114a85b6491c91e9d
SHA-256: 95de384a42a4d83752fa091b5d718c916eb211764b6b5f7e55a2f5b3cac84f11
libpng-static-1.5.13-7.el7_2.ppc.rpm     MD5: 0b62a35e67689dfac73f1ac2d646f9d0
SHA-256: 1d73099b99bc2ed7afa622f9478a5cbba52d8c38d9c242f7493e34c1a72fa292
libpng-static-1.5.13-7.el7_2.ppc64.rpm     MD5: ba97e16f98dad8985dd4ea343bce01f5
SHA-256: ed40e917f2e792627e761166a72635a219deb3e38693f66746d971c63dcdf4f3
 
PPC64LE:
libpng-1.5.13-7.el7_2.ppc64le.rpm     MD5: 8809afe1b3331ab5b439529698f9e31a
SHA-256: 8b94b625558c5027cce3ffb34ed66aee26afa3040c269d8b105bf532d67021f4
libpng-debuginfo-1.5.13-7.el7_2.ppc64le.rpm     MD5: caab85d65b01e85f26360b463ec71f25
SHA-256: dcbb20b3b7de3d33e2d43b2d788c3416ff63b2f37ee1f1aa67522c8b5dd3505d
libpng-devel-1.5.13-7.el7_2.ppc64le.rpm     MD5: 64163b6d6111558cd66a95d08f557688
SHA-256: b91209da614bc2704c069f177be4203f87ebb913487c30826bf1e307807d7dce
libpng-static-1.5.13-7.el7_2.ppc64le.rpm     MD5: 6ccaf4cd384e36ce5c2c89d9bb5e64b6
SHA-256: c2d140ca131dc01c41f1c98a20a8d6daa9791bda74b460cbc23177ca80327c30
 
s390x:
libpng-1.5.13-7.el7_2.s390.rpm     MD5: ef9cad60ac5480495995987fced21428
SHA-256: 72ddde6f7145cfc9ed0c6b0dc02a7343e93f6688f4d1386a5b49f1da8d349608
libpng-1.5.13-7.el7_2.s390x.rpm     MD5: 43328074957d0e1e498b2c03b98b2abf
SHA-256: 8a7534cab0d0eebe41c1aa24b1c74d26d03d5842044760838caa7a3048a23052
libpng-debuginfo-1.5.13-7.el7_2.s390.rpm     MD5: 9e04b4f7b03150ff0ad58da6ba56ce46
SHA-256: 51348b2e0d465d0ec378f88777fa49c1105de761832ed45517991afc66a06d5b
libpng-debuginfo-1.5.13-7.el7_2.s390x.rpm     MD5: 51967b6418159757e85d8727a9fee959
SHA-256: 8d1a9fefd15aa405959ca988e8589b5f234469c490ae120ba72b7a23fa8902d8
libpng-devel-1.5.13-7.el7_2.s390.rpm     MD5: d6a72a0cafc26525444e8851ea195fcf
SHA-256: ffbcfcfd5eb3a8e500d03c537f5e15c37207f8bf822b60a0a2a8785cfca497c0
libpng-devel-1.5.13-7.el7_2.s390x.rpm     MD5: 928cb0d1387d1e8cad9164185e99d23a
SHA-256: f278a30d52eb6496ddf6797900fb4d042e761f7dcaec5f082c9b5a09895ede73
libpng-static-1.5.13-7.el7_2.s390.rpm     MD5: cfe018aa16a2e68c834ced87899082fc
SHA-256: 9d1f3fd203d3a191cd6e29ac71db4e5a62616d4d70286dbb7a223deb0731dd27
libpng-static-1.5.13-7.el7_2.s390x.rpm     MD5: c2d793f8b8f3617e8cdd7fb081b58696
SHA-256: b8d274396681c2a4fabc8a055ef3002f52adf9c47009d4a1cce889fd3e40e84a
 
x86_64:
libpng-1.5.13-7.el7_2.i686.rpm     MD5: 2f7f150a6fc540eb9b963777801f5488
SHA-256: 6deaca2953a4895e18a5c3ff62fb7c573a53117e61ebba08acea77b380368904
libpng-1.5.13-7.el7_2.x86_64.rpm     MD5: e93cc87dae9dc281a47c4f98188296cc
SHA-256: ac746483068b338b15da35721edbac7ae07e6149f938e0ebd5eea0e6b02e7d0b
libpng-debuginfo-1.5.13-7.el7_2.i686.rpm     MD5: dd37f4df9b5dcf2921146ef9108c8fa1
SHA-256: ca1f54a2bd69d0496f9c3611bb52d8d5f9a3757f2fd527a780dc786cea347731
libpng-debuginfo-1.5.13-7.el7_2.x86_64.rpm     MD5: 0aadaf0af39d09e5b74621e3f8004cfe
SHA-256: 80ece28ef0eb2aeaa26ab7275a2380cc910375432cec822d90f5ad45a0af10fa
libpng-devel-1.5.13-7.el7_2.i686.rpm     MD5: 82bc742f7e84062933ae0480cdd4cc8c
SHA-256: 36ac83c82d6ab6847264519522cb182b9a4b7d6a4f88e76b511cf6df9896779d
libpng-devel-1.5.13-7.el7_2.x86_64.rpm     MD5: 6b4022d5ed55fe6a119e4d20c8fcc8d4
SHA-256: d57709da1e9135db4c0565571c58ede059296f6d5ba6e72f907197f92c6ddd72
libpng-static-1.5.13-7.el7_2.i686.rpm     MD5: e4188bffd0597f66b3fc028508f2fb68
SHA-256: af95d7ef82cfca220917bcda2a6bc72eae7280cdb6cd59ff28c5f495f006c9f5
libpng-static-1.5.13-7.el7_2.x86_64.rpm     MD5: 2f3a8d437a01442f51cf23cbf0b89507
SHA-256: 6e4a00c8d0b7e1fabada75737d5e9fd12119a636a65c8b0d298b3cc695824312
 
Red Hat Enterprise Linux Server AUS (v. 7.2)

SRPMS:
libpng-1.5.13-7.el7_2.src.rpm     MD5: 9bf8be4d0ebf82838bf05f3a57d0c5e3
SHA-256: eaa6784a0a8ce9079ed3ca820edc740f4600073840a777b971da697873edc9fa
 
x86_64:
libpng-1.5.13-7.el7_2.i686.rpm     MD5: 2f7f150a6fc540eb9b963777801f5488
SHA-256: 6deaca2953a4895e18a5c3ff62fb7c573a53117e61ebba08acea77b380368904
libpng-1.5.13-7.el7_2.x86_64.rpm     MD5: e93cc87dae9dc281a47c4f98188296cc
SHA-256: ac746483068b338b15da35721edbac7ae07e6149f938e0ebd5eea0e6b02e7d0b
libpng-debuginfo-1.5.13-7.el7_2.i686.rpm     MD5: dd37f4df9b5dcf2921146ef9108c8fa1
SHA-256: ca1f54a2bd69d0496f9c3611bb52d8d5f9a3757f2fd527a780dc786cea347731
libpng-debuginfo-1.5.13-7.el7_2.x86_64.rpm     MD5: 0aadaf0af39d09e5b74621e3f8004cfe
SHA-256: 80ece28ef0eb2aeaa26ab7275a2380cc910375432cec822d90f5ad45a0af10fa
libpng-devel-1.5.13-7.el7_2.i686.rpm     MD5: 82bc742f7e84062933ae0480cdd4cc8c
SHA-256: 36ac83c82d6ab6847264519522cb182b9a4b7d6a4f88e76b511cf6df9896779d
libpng-devel-1.5.13-7.el7_2.x86_64.rpm     MD5: 6b4022d5ed55fe6a119e4d20c8fcc8d4
SHA-256: d57709da1e9135db4c0565571c58ede059296f6d5ba6e72f907197f92c6ddd72
libpng-static-1.5.13-7.el7_2.i686.rpm     MD5: e4188bffd0597f66b3fc028508f2fb68
SHA-256: af95d7ef82cfca220917bcda2a6bc72eae7280cdb6cd59ff28c5f495f006c9f5
libpng-static-1.5.13-7.el7_2.x86_64.rpm     MD5: 2f3a8d437a01442f51cf23cbf0b89507
SHA-256: 6e4a00c8d0b7e1fabada75737d5e9fd12119a636a65c8b0d298b3cc695824312
 
Red Hat Enterprise Linux Server EUS (v. 7.2)

SRPMS:
libpng-1.5.13-7.el7_2.src.rpm     MD5: 9bf8be4d0ebf82838bf05f3a57d0c5e3
SHA-256: eaa6784a0a8ce9079ed3ca820edc740f4600073840a777b971da697873edc9fa
 
PPC:
libpng-1.5.13-7.el7_2.ppc.rpm     MD5: fe6128212a2e2793facbca44bb0bf1e2
SHA-256: ca2528a95b33bf401afcaaf24c1d5ef2d0d2bc71085c9173905bb94016c0269c
libpng-1.5.13-7.el7_2.ppc64.rpm     MD5: 485c747f9e87c05c9719500ab56f2b77
SHA-256: da1ad7e2f0080ce7146ab780fe971f7789eb84b31401263f8a9b7a06578db029
libpng-debuginfo-1.5.13-7.el7_2.ppc.rpm     MD5: f184a5b19d1482b063c9a9bc46851ab0
SHA-256: 6fb1154875a1431790a8f9d15af1ab7a466ad57fbd38d97a2da9b68430020668
libpng-debuginfo-1.5.13-7.el7_2.ppc64.rpm     MD5: 611c6ebd6d6c12f2ab49aff79a57d50c
SHA-256: 1775ececed8af7814e50dbb0c80afd4f93c97e9f20d5c4f31bcdaab44f3aa297
libpng-devel-1.5.13-7.el7_2.ppc.rpm     MD5: 94c844039436e21fb36844e79c5512cd
SHA-256: 65d0de28f6974dd9d10d1b182e4a045c3de59df33a79097cd37b999940d44984
libpng-devel-1.5.13-7.el7_2.ppc64.rpm     MD5: 718b4ad038bf8a1114a85b6491c91e9d
SHA-256: 95de384a42a4d83752fa091b5d718c916eb211764b6b5f7e55a2f5b3cac84f11
libpng-static-1.5.13-7.el7_2.ppc.rpm     MD5: 0b62a35e67689dfac73f1ac2d646f9d0
SHA-256: 1d73099b99bc2ed7afa622f9478a5cbba52d8c38d9c242f7493e34c1a72fa292
libpng-static-1.5.13-7.el7_2.ppc64.rpm     MD5: ba97e16f98dad8985dd4ea343bce01f5
SHA-256: ed40e917f2e792627e761166a72635a219deb3e38693f66746d971c63dcdf4f3
 
PPC64LE:
libpng-1.5.13-7.el7_2.ppc64le.rpm     MD5: 8809afe1b3331ab5b439529698f9e31a
SHA-256: 8b94b625558c5027cce3ffb34ed66aee26afa3040c269d8b105bf532d67021f4
libpng-debuginfo-1.5.13-7.el7_2.ppc64le.rpm     MD5: caab85d65b01e85f26360b463ec71f25
SHA-256: dcbb20b3b7de3d33e2d43b2d788c3416ff63b2f37ee1f1aa67522c8b5dd3505d
libpng-devel-1.5.13-7.el7_2.ppc64le.rpm     MD5: 64163b6d6111558cd66a95d08f557688
SHA-256: b91209da614bc2704c069f177be4203f87ebb913487c30826bf1e307807d7dce
libpng-static-1.5.13-7.el7_2.ppc64le.rpm     MD5: 6ccaf4cd384e36ce5c2c89d9bb5e64b6
SHA-256: c2d140ca131dc01c41f1c98a20a8d6daa9791bda74b460cbc23177ca80327c30
 
s390x:
libpng-1.5.13-7.el7_2.s390.rpm     MD5: ef9cad60ac5480495995987fced21428
SHA-256: 72ddde6f7145cfc9ed0c6b0dc02a7343e93f6688f4d1386a5b49f1da8d349608
libpng-1.5.13-7.el7_2.s390x.rpm     MD5: 43328074957d0e1e498b2c03b98b2abf
SHA-256: 8a7534cab0d0eebe41c1aa24b1c74d26d03d5842044760838caa7a3048a23052
libpng-debuginfo-1.5.13-7.el7_2.s390.rpm     MD5: 9e04b4f7b03150ff0ad58da6ba56ce46
SHA-256: 51348b2e0d465d0ec378f88777fa49c1105de761832ed45517991afc66a06d5b
libpng-debuginfo-1.5.13-7.el7_2.s390x.rpm     MD5: 51967b6418159757e85d8727a9fee959
SHA-256: 8d1a9fefd15aa405959ca988e8589b5f234469c490ae120ba72b7a23fa8902d8
libpng-devel-1.5.13-7.el7_2.s390.rpm     MD5: d6a72a0cafc26525444e8851ea195fcf
SHA-256: ffbcfcfd5eb3a8e500d03c537f5e15c37207f8bf822b60a0a2a8785cfca497c0
libpng-devel-1.5.13-7.el7_2.s390x.rpm     MD5: 928cb0d1387d1e8cad9164185e99d23a
SHA-256: f278a30d52eb6496ddf6797900fb4d042e761f7dcaec5f082c9b5a09895ede73
libpng-static-1.5.13-7.el7_2.s390.rpm     MD5: cfe018aa16a2e68c834ced87899082fc
SHA-256: 9d1f3fd203d3a191cd6e29ac71db4e5a62616d4d70286dbb7a223deb0731dd27
libpng-static-1.5.13-7.el7_2.s390x.rpm     MD5: c2d793f8b8f3617e8cdd7fb081b58696
SHA-256: b8d274396681c2a4fabc8a055ef3002f52adf9c47009d4a1cce889fd3e40e84a
 
x86_64:
libpng-1.5.13-7.el7_2.i686.rpm     MD5: 2f7f150a6fc540eb9b963777801f5488
SHA-256: 6deaca2953a4895e18a5c3ff62fb7c573a53117e61ebba08acea77b380368904
libpng-1.5.13-7.el7_2.x86_64.rpm     MD5: e93cc87dae9dc281a47c4f98188296cc
SHA-256: ac746483068b338b15da35721edbac7ae07e6149f938e0ebd5eea0e6b02e7d0b
libpng-debuginfo-1.5.13-7.el7_2.i686.rpm     MD5: dd37f4df9b5dcf2921146ef9108c8fa1
SHA-256: ca1f54a2bd69d0496f9c3611bb52d8d5f9a3757f2fd527a780dc786cea347731
libpng-debuginfo-1.5.13-7.el7_2.x86_64.rpm     MD5: 0aadaf0af39d09e5b74621e3f8004cfe
SHA-256: 80ece28ef0eb2aeaa26ab7275a2380cc910375432cec822d90f5ad45a0af10fa
libpng-devel-1.5.13-7.el7_2.i686.rpm     MD5: 82bc742f7e84062933ae0480cdd4cc8c
SHA-256: 36ac83c82d6ab6847264519522cb182b9a4b7d6a4f88e76b511cf6df9896779d
libpng-devel-1.5.13-7.el7_2.x86_64.rpm     MD5: 6b4022d5ed55fe6a119e4d20c8fcc8d4
SHA-256: d57709da1e9135db4c0565571c58ede059296f6d5ba6e72f907197f92c6ddd72
libpng-static-1.5.13-7.el7_2.i686.rpm     MD5: e4188bffd0597f66b3fc028508f2fb68
SHA-256: af95d7ef82cfca220917bcda2a6bc72eae7280cdb6cd59ff28c5f495f006c9f5
libpng-static-1.5.13-7.el7_2.x86_64.rpm     MD5: 2f3a8d437a01442f51cf23cbf0b89507
SHA-256: 6e4a00c8d0b7e1fabada75737d5e9fd12119a636a65c8b0d298b3cc695824312
 
Red Hat Enterprise Linux Workstation (v. 7)

SRPMS:
libpng-1.5.13-7.el7_2.src.rpm     MD5: 9bf8be4d0ebf82838bf05f3a57d0c5e3
SHA-256: eaa6784a0a8ce9079ed3ca820edc740f4600073840a777b971da697873edc9fa
 
x86_64:
libpng-1.5.13-7.el7_2.i686.rpm     MD5: 2f7f150a6fc540eb9b963777801f5488
SHA-256: 6deaca2953a4895e18a5c3ff62fb7c573a53117e61ebba08acea77b380368904
libpng-1.5.13-7.el7_2.x86_64.rpm     MD5: e93cc87dae9dc281a47c4f98188296cc
SHA-256: ac746483068b338b15da35721edbac7ae07e6149f938e0ebd5eea0e6b02e7d0b
libpng-debuginfo-1.5.13-7.el7_2.i686.rpm     MD5: dd37f4df9b5dcf2921146ef9108c8fa1
SHA-256: ca1f54a2bd69d0496f9c3611bb52d8d5f9a3757f2fd527a780dc786cea347731
libpng-debuginfo-1.5.13-7.el7_2.x86_64.rpm     MD5: 0aadaf0af39d09e5b74621e3f8004cfe
SHA-256: 80ece28ef0eb2aeaa26ab7275a2380cc910375432cec822d90f5ad45a0af10fa
libpng-devel-1.5.13-7.el7_2.i686.rpm     MD5: 82bc742f7e84062933ae0480cdd4cc8c
SHA-256: 36ac83c82d6ab6847264519522cb182b9a4b7d6a4f88e76b511cf6df9896779d
libpng-devel-1.5.13-7.el7_2.x86_64.rpm     MD5: 6b4022d5ed55fe6a119e4d20c8fcc8d4
SHA-256: d57709da1e9135db4c0565571c58ede059296f6d5ba6e72f907197f92c6ddd72
libpng-static-1.5.13-7.el7_2.i686.rpm     MD5: e4188bffd0597f66b3fc028508f2fb68
SHA-256: af95d7ef82cfca220917bcda2a6bc72eae7280cdb6cd59ff28c5f495f006c9f5
libpng-static-1.5.13-7.el7_2.x86_64.rpm     MD5: 2f3a8d437a01442f51cf23cbf0b89507
SHA-256: 6e4a00c8d0b7e1fabada75737d5e9fd12119a636a65c8b0d298b3cc695824312
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

1281756 - CVE-2015-8126 CVE-2015-8472 libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/