| Name | DSA-6138-1 |
| Description | libpng1.6 - security update |
| Source | Debian |
| References | CVE-2026-25646 |
The table below lists information on source packages.
| Source Package | Release | Version | Status |
|---|---|---|---|
| libpng1.6 (PTS) | bookworm | 1.6.39-2+deb12u1 | vulnerable |
| bookworm (security) | 1.6.39-2+deb12u3 | fixed | |
| trixie | 1.6.48-1+deb13u1 | vulnerable | |
| trixie (security) | 1.6.48-1+deb13u3 | fixed |
The information below is based on the following data on fixed versions.
| Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
|---|---|---|---|---|---|---|
| libpng1.6 | source | bookworm | 1.6.39-2+deb12u3 | |||
| libpng1.6 | source | trixie | 1.6.48-1+deb13u3 |