1- libpng 1.6.57 - April 8 , 2026
2- =============================
1+ libpng 1.6.58 - April 15 , 2026
2+ ==============================
33
44This is a public release of libpng, intended for use in production code.
55
@@ -9,10 +9,10 @@ Files available for download
99
1010Source files:
1111
12- * libpng-1.6.57 .tar.xz (LZMA-compressed, recommended)
13- * libpng-1.6.57 .tar.gz (deflate-compressed)
14- * lpng1657 .7z (LZMA-compressed)
15- * lpng1657 .zip (deflate-compressed)
12+ * libpng-1.6.58 .tar.xz (LZMA-compressed, recommended)
13+ * libpng-1.6.58 .tar.gz (deflate-compressed)
14+ * lpng1658 .7z (LZMA-compressed)
15+ * lpng1658 .zip (deflate-compressed)
1616
1717Other information:
1818
@@ -22,18 +22,13 @@ Other information:
2222 * TRADEMARK.md
2323
2424
25- Changes from version 1.6.56 to version 1.6.57
25+ Changes from version 1.6.57 to version 1.6.58
2626---------------------------------------------
2727
28- * Fixed CVE-2026-34757 (medium severity):
29- Use-after-free in `png_set_PLTE`, `png_set_tRNS` and `png_set_hIST`
30- leading to corrupted chunk data and potential heap information disclosure.
31- Also hardened the append-style setters (`png_set_text`, `png_set_sPLT`,
32- `png_set_unknown_chunks`) against a theoretical variant of the same
33- aliasing pattern.
34- (Reported by Iv4n <Iv4n550@users.noreply.github.com>.)
35- * Fixed integer overflow in rowbytes computation in read transforms.
36- (Contributed by Mohammad Seet.)
28+ * Fixed a regression introduced in version 1.6.56 that caused `png_get_PLTE`
29+ to return stale palette data after applying gamma and background transforms
30+ in-place.
31+ (Reported by ralfjunker <ralfjunker@users.noreply.github.com>.)
3732
3833
3934Send comments/corrections/commendations to png-mng-implement at lists.sf.net.
0 commit comments