Upgrade bundled dependencies to latest versions #5207
Description
Summary
Several bundled dependencies have newer versions available. This issue tracks upgrading them all.
Dependencies to Upgrade
| Dependency | Current | Target | Priority | Changes |
|---|---|---|---|---|
| libpng | 1.6.53 | 1.6.55 | CRITICAL | CVE-2026-22801 (heap over-read), CVE-2026-25646 (heap overflow, potential RCE) |
| utf8proc | 2.11.0 | 2.11.1 | MEDIUM | Out-of-bounds memory access fix |
| SQLite | 3.51.1 | 3.51.2 | MEDIUM | Deadlock fix, query optimizer bug fixes |
| zlib | 1.3.1 | 1.3.1.2 | LOW | Build/portability improvements |
| LZMA SDK (7-Zip) | 25.01 | 26.00 | LOW | Format improvements |