From patchwork Tue Apr 7 15:10:50 2026 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Adolf Belka X-Patchwork-Id: 9625 Return-Path: Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange x25519) (Client CN "mail01.haj.ipfire.org", Issuer "R12" (not verified)) by web04.haj.ipfire.org (Postfix) with ESMTPS id 4fqqRN4nJ8z3wsm for ; Tue, 07 Apr 2026 15:11:44 +0000 (UTC) Received: from mail02.haj.ipfire.org (mail02.haj.ipfire.org [IPv6:2001:678:b28::201]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange x25519) (Client CN "mail02.haj.ipfire.org", Issuer "E7" (not verified)) by mail01.ipfire.org (Postfix) with ESMTPS id 4fqqRN3m54z5kP for ; Tue, 07 Apr 2026 15:11:44 +0000 (UTC) Received: from mail02.haj.ipfire.org (localhost [IPv6:::1]) by mail02.haj.ipfire.org (Postfix) with ESMTP id 4fqqR46bqhz37Nc for ; Tue, 07 Apr 2026 15:11:28 +0000 (UTC) X-Original-To: development@lists.ipfire.org Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange x25519) (Client CN "mail01.haj.ipfire.org", Issuer "R12" (not verified)) by mail02.haj.ipfire.org (Postfix) with ESMTPS id 4fqqQr6lbWz34bR for ; Tue, 07 Apr 2026 15:11:16 +0000 (UTC) Received: from [127.0.0.1] (localhost [127.0.0.1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange x25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by mail01.ipfire.org (Postfix) with ESMTPSA id 4fqqQr5VR8z5hs; Tue, 07 Apr 2026 15:11:16 +0000 (UTC) DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/relaxed; d=ipfire.org; s=202003ed25519; t=1775574676; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=TCCCw0F7ig1VmsWHqaLXv/y/q0dzwF84+3nh3qutTKY=; b=7Yjjx6j1pxTwxbEGGh3OuHJ8Wja8bx2KOk2BtBa4oKttIseHEMpIGbphzYZMAL8fFmn4Pm hSlucLztfy3FshBw== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ipfire.org; s=202003rsa; t=1775574676; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=TCCCw0F7ig1VmsWHqaLXv/y/q0dzwF84+3nh3qutTKY=; b=CkJDXW57bTAikAhPHO4npipQCCVdVnMbPlURsPpsVY/gEu4lclxVRQfIh37C1ZQGcJtZN4 PdHh7fN/ndb5jgnFblxtzh7QxYNXNOwhRCJYw4Fi5yBflNTcVQy9n/evFsVLm/nkvmlTlF lhneZshot9DYcc6BdcupJERqqtRnI4MgukqvoiwB+ptkGqYtKeEycQprctDdNezdRSfND1 Zk3Onf6vRY32XTdVyAs7DCKgwh/dfnugUPvAXPB88qZtixVuct98DFvrz1ewrRFngS6hgv iu8WvNB/O8kkhC9kDmlzzxSAMVMudFiNZKPu/KAVUQ5D2e5KUzSM/kfmJFac/A== From: Adolf Belka To: development@lists.ipfire.org Cc: Adolf Belka Subject: [PATCH] libpng: Update to version 1.6.56 Date: Tue, 7 Apr 2026 17:10:50 +0200 Message-ID: <20260407151108.3472751-17-adolf.belka@ipfire.org> In-Reply-To: <20260407151108.3472751-1-adolf.belka@ipfire.org> References: <20260407151108.3472751-1-adolf.belka@ipfire.org> Precedence: list List-Id: List-Subscribe: , List-Unsubscribe: , List-Post: List-Help: Sender: Mail-Followup-To: MIME-Version: 1.0 - Update from version 1.6.55 to 1.6.56 - Update of rootfile - Fixes for two high severity CVE's - Changelog 1.6.56 Fixed CVE-2026-33416 (high severity): Use-after-free via pointer aliasing in `png_set_tRNS` and `png_set_PLTE`. (Reported by Halil Oktay and Ryo Shimada; fixed by Halil Oktay and Cosmin Truta.) Fixed CVE-2026-33636 (high severity): Out-of-bounds read/write in the palette expansion on ARM Neon. (Reported by Taegu Ha; fixed by Taegu Ha and Cosmin Truta.) Fixed uninitialized reads beyond `num_trans` in `trans_alpha` buffers. (Contributed by Halil Oktay.) Fixed stale `info_ptr->palette` after in-place gamma and background transforms. Fixed wrong channel indices in `png_image_read_and_map` RGB_ALPHA path. (Contributed by Yuelin Wang.) Fixed wrong background color in colormap read. (Contributed by Yuelin Wang.) Fixed dead loop in sPLT write. (Contributed by Yuelin Wang.) Added missing null pointer checks in four public API functions. (Contributed by Yuelin Wang.) Validated shift bit depths in `png_set_shift` to prevent infinite loop. (Contributed by Yuelin Wang.) Avoided undefined behavior in library and tests. Deprecated the hardly-ever-tested POINTER_INDEXING config option. Added negative-stride test coverage for the simplified API. Fixed memory leaks and API misuse in oss-fuzz. (Contributed by Owen Sanzas.) Implemented various fixes and improvements in oss-fuzz. (Contributed by Bob Friesenhahn and Philippe Antoine.) Performed various refactorings and cleanups. Signed-off-by: Adolf Belka --- config/rootfiles/common/libpng | 2 +- lfs/libpng | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/config/rootfiles/common/libpng b/config/rootfiles/common/libpng index 3a263172a..c19c261c5 100644 --- a/config/rootfiles/common/libpng +++ b/config/rootfiles/common/libpng @@ -16,7 +16,7 @@ usr/lib/libpng.so #usr/lib/libpng16.la usr/lib/libpng16.so usr/lib/libpng16.so.16 -usr/lib/libpng16.so.16.55.0 +usr/lib/libpng16.so.16.56.0 #usr/lib/pkgconfig/libpng.pc #usr/lib/pkgconfig/libpng16.pc #usr/share/man/man3/libpng.3 diff --git a/lfs/libpng b/lfs/libpng index cadba768d..d65a5d86e 100644 --- a/lfs/libpng +++ b/lfs/libpng @@ -24,7 +24,7 @@ include Config -VER = 1.6.55 +VER = 1.6.56 THISAPP = libpng-$(VER) DL_FILE = $(THISAPP).tar.xz @@ -40,7 +40,7 @@ objects = $(DL_FILE) $(DL_FILE) = $(DL_FROM)/$(DL_FILE) -$(DL_FILE)_BLAKE2 = 2fd88e6e9f4e72edbafbfdd6d8e78522033920a250f8cb37f29ba8e9593cdf006b06f4e73de4e83fc5ddaaa3725362f27f5a16727ae841fd8969b74f28517ec4 +$(DL_FILE)_BLAKE2 = f653a3177e0910fc156a792d5522fc2a0c04ce0bb43eabb68e06922303dcf6062d8f9b570440bfe1a94ac1b901ef6e9c32b6882d0f4a406e5a9090ea3396f89a install : $(TARGET)