20 matches found
CVE-2026-34757 vulnerabilities
Vulnerabilities for packages: libpng...
Fedora 43 : libpng (2026-a109a9ac2c)
The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-a109a9ac2c advisory. updated to 1.6.58 1.6.58 is released with a fix for a simple correctness bug not a security issue this time: pnggetPLTE returns stale palette data...
Fedora 44 : libpng (2026-67c1138ed2)
The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-67c1138ed2 advisory. updated to 1.6.58 1.6.58 is released with a fix for a simple correctness bug not a security issue this time: pnggetPLTE returns stale palette data...
SUSE-SU-2026:2057-1 Security update for libpng16
This update for libpng16 fixes the following issue: - CVE-2026-34757: information disclosure and data corruption due to use-after-free in pngsetPLTE, pngsettRNS and pngsethIST bsc1261957...
CLSA-2026-1779129500 libpng15: Fix of CVE-2026-34757
CVE-2026-34757: Use snapshot-before-free and defer-free patterns to prevent use-after-free when a caller passes a pointer obtained from pnggetPLTE, pnggettRNS, pnggethIST, pnggettext, pnggetsPLT, or pnggetunknownchunks back into the corresponding setter issues 836 and 837...
CLSA-2026-1778928586 libpng: Fix of CVE-2026-34757
CVE-2026-34757: use-after-free in pngsetPLTE, pngsettRNS, pngsethIST, pngsettext, pngsetsPLT and pngsetunknownchunks when the caller passes the pointer returned by the corresponding getter back to the setter...
SUSE SLES12 Security Update : libpng12 (SUSE-SU-2026:1702-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1702-1 advisory. Update to version 1.2.59 jscPED-16191. - CVE-2026-33416: use-after-free via pointer aliasing in pngsettRNS and pngsetPLTE can lead to arbitrary...
Debian dla-4573 : libpng-dev - security update
The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4573 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4573-1 [email protected] https://www.debian.org/lts/security/...
SUSE-SU-2026:1702-1 Security update for libpng12
This update for libpng12 fixes the following issues: Update to version 1.2.59 jscPED-16191. - CVE-2026-33416: use-after-free via pointer aliasing in pngsettRNS and pngsetPLTE can lead to arbitrary code execution bsc1260754. - CVE-2026-34757: use-after-free in pngsetPLTE, pngsettRNS and pngsethIST...
Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: libpng: libpng-1.6.57-0.1.hum1 aarch64, x8664 libpng-devel-1.6.57-0.1.hum1 aarch64, x8664 libpng-static-1.6.57-0.1.hum1 aarch64, x8664 libpng-tools-1.6.57-0.1.hum1 aarch64, x8664...
Amazon Linux 2 : libpng, --advisory ALAS2-2026-3266 (ALAS-2026-3266)
The version of libpng installed on the remote host is prior to 1.5.13-8. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3266 advisory. Use-after-free in pngsetPLTE, pngsettRNS and pngsethIST in libpng before 1.6.57. Passing a pointer returned by the corresponding...
SUSE SLES12 Security Update : libpng16 (SUSE-SU-2026:1601-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2026:1601-1 advisory. This update for libpng16 fixes the following issue: - CVE-2026-34757: information disclosure and data corruption due to use-after-free in pngsetPLTE,...
Security update for libpng16
This update for libpng16 fixes the following issue: CVE-2026-34757: information disclosure and data corruption due to use-after-free in pngsetPLTE, pngsettRNS and pngsethIST bsc1261957. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...
SUSE-SU-2026:1601-1 Security update for libpng16
This update for libpng16 fixes the following issue: - CVE-2026-34757: information disclosure and data corruption due to use-after-free in pngsetPLTE, pngsettRNS and pngsethIST bsc1261957...
OPENSUSE-SU-2026:20593-1 Security update for libpng16
This update for libpng16 fixes the following issue: - CVE-2026-34757: libpng: Information disclosure and data corruption via use-after-free vulnerability bsc1261957...
SUSE-SU-2026:21251-1 Security update for libpng16
This update for libpng16 fixes the following issue: - CVE-2026-34757: libpng: Information disclosure and data corruption via use-after-free vulnerability bsc1261957...
SUSE-SU-2026:21262-1 Security update for libpng16
This update for libpng16 fixes the following issue: - CVE-2026-34757: libpng: Information disclosure and data corruption via use-after-free vulnerability bsc1261957...
Slackware: Security Advisory (SSA:2026-099-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[slackware-security] libpng
New libpng packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libpng-1.6.57-i586-1slack15.0.txz: Upgraded. Fixed a medium severity security issue: Use-after-free in pngsetPLTE, pngsettRNS and...
Linux Distros Unpatched Vulnerability : CVE-2026-34757
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.0.9 to before...