PT-2026-36856

Name of the Vulnerable Software and Affected Versions PPTAgent versions prior to commit 418491a Description An agentic framework for reflective PowerPoint generation allows arbitrary file write and directory creation through the markdown table to image function. Recommendations Update to commit...

JLSEC-2026-8 LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portabl...

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.6.26 to 1.6.53, there is an integer truncation in the libpng simplified write API functions pngwriteimage16bit and pngwriteimage8bit causes heap buffer...

libpng security update

2:1.6.34-10 - fix CVE-2026-25646: heap buffer overflow in pngsetquantize RHEL-148338 - fix CVE-2026-22695: heap buffer over-read in pngimagefinishread RHEL-148852 - fix CVE-2026-22801: heap buffer over-read in pngimagewritebit RHEL-146659...

EulerOS 2.0 SP11 : libpng (EulerOS-SA-2026-1583)

According to the versions of the libpng package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. Prior to...

Heap-based Buffer Overflow

Overview Magick.NET-Q8-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

Out-of-bounds Write

Overview Magick.NET-Q8-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

SUSE-SU-2026:20530-1 Security update for libpng16

This update for libpng16 fixes the following issues: - CVE-2026-25646: Fixed a heap buffer overflow vulnerability in pngsetdither/pngsetquantize bsc1258020. - CVE-2025-28162: memory leaks when running pngimage bsc1257364. - CVE-2025-28164: memory leaks when running pngimage bsc1257365. -...

SUSE-SU-2026:20523-1 Security update for libpng16

This update for libpng16 fixes the following issues: - CVE-2025-28162: memory leaks when running pngimage bsc1257364. - CVE-2025-28164: memory leaks when running pngimage bsc1257365. - CVE-2026-22695: heap buffer over-read in pngimagefinishread bsc1256525. - CVE-2026-22801: integer truncation...

libpng security update

2:1.6.37-12.2 - fix CVE-2026-25646: heap buffer overflow in pngsetquantize RHEL-148970 - fix CVE-2026-22695: heap buffer over-read in pngimagefinishread RHEL-148403 - fix CVE-2026-22801: heap buffer over-read in pngimagewritebit RHEL-147343...

GHSA-VHQJ-F5CJ-9X8H ImageMagick has heap-buffer-overflow via signed integer overflow in WriteUHDRImage when writing UHDR images with large dimensions

WriteUHDRImage in coders/uhdr.c uses int arithmetic to compute the pixel buffer size. When image dimensions are large, the multiplication overflows 32-bit int, causing an undersized heap allocation followed by an out-of-bounds write. This can crash the process or potentially lead to an out of...

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound in the WriteUHDRImage function when processing UHDR images with excessively large dimensions due to a signed integer overflow during pixel buffer size calculation. An attacker can cause a denial of service...

SUSE-SU-2026:0596-1 Security update for libpng16

This update for libpng16 fixes the following issues: - CVE-2025-28162: memory leaks when running pngimage bsc1257364. - CVE-2025-28164: memory leaks when running pngimage bsc1257365. - CVE-2026-22695: heap buffer over-read in pngimagefinishread bsc1256525. - CVE-2026-22801: integer truncation...

CLSA-2026-1771002358 libpng: Fix of CVE-2026-22801

CVE-2026-22801: fix heap buffer over-read in pngimagewrite...

CLSA-2026-1771001650 libpng: Fix of CVE-2026-22801

CVE-2026-22801: fix heap buffer over-read in pngimagewrite...

openSUSE 16 Security Update : libpng16 (openSUSE-SU-2026:20083-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20083-1 advisory. - CVE-2026-22695: Fixed heap buffer over-read in pngimagefinishread bsc1256525. - CVE-2026-22801: Fixed integer truncation causing heap buffer...

SUSE-SU-2026:20127-1 Security update for libpng16

This update for libpng16 fixes the following issues: - CVE-2026-22695: Fixed heap buffer over-read in pngimagefinishread bsc1256525. - CVE-2026-22801: Fixed integer truncation causing heap buffer over-read in pngimagewrite bsc1256526...

OPENSUSE-SU-2026:20083-1 Security update for libpng16

This update for libpng16 fixes the following issues: - CVE-2026-22695: Fixed heap buffer over-read in pngimagefinishread bsc1256525. - CVE-2026-22801: Fixed integer truncation causing heap buffer over-read in pngimagewrite bsc1256526...

Security update for libpng16

This update for libpng16 fixes the following issues: CVE-2026-22695: Fixed heap buffer over-read in pngimagefinishread bsc1256525 CVE-2026-22801: Fixed integer truncation causing heap buffer over-read in pngimagewrite bsc1256526. Patch Instructions: To install this SUSE update use the SUSE...

SUSE-SU-2026:0234-1 Security update for libpng16

This update for libpng16 fixes the following issues: - CVE-2026-22695: Fixed heap buffer over-read in pngimagefinishread bsc1256525 - CVE-2026-22801: Fixed integer truncation causing heap buffer over-read in pngimagewrite bsc1256526...

MiracleLinux 8 : grub2-2.02-123.el8.8.ML.1, mokutil-0.3.0-11.el8.1, shim-15.6-1.el8.ML.1, shim-unsigned-x64-15.6-1.el8.ML.1 (AXSA:2022-4042:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-4042:01 advisory. grub2: Integer underflow in grubnetrecvip4packets CVE-2022-28733 grub2: Crafted PNG grayscale images may lead to out-of-bounds write in heap...