CVE-2026-22695

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.6.51 to 1.6.53, there is a heap buffer over-read in the libpng simplified API function pngimagefinishread when processing interlaced 16-bit PNGs with...

libpng: LIBPNG heap buffer overflow

A buffer overflow flaw has been discovered in libpng. There is a heap buffer overflow vulnerability in the libpng simplified API function pngimagefinishread when processing 16-bit interlaced PNGs with 8-bit output format. Attacker-crafted interlaced PNG files cause heap writes beyond allocated...

JLSEC-2025-331 LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portabl...

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From version 1.6.0 to before 1.6.51, there is a heap buffer overflow vulnerability in the libpng simplified API function pngimagefinishread when processing...

AZL-70891 CVE-2025-65018 affecting package fltk 1.3.5-4

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From version 1.6.0 to before 1.6.51, there is a heap buffer overflow vulnerability in the libpng simplified API function pngimagefinishread when processing...

AZL-70874 CVE-2025-65018 affecting package openjpeg2 2.3.1-12

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From version 1.6.0 to before 1.6.51, there is a heap buffer overflow vulnerability in the libpng simplified API function pngimagefinishread when processing...

ALPINE-CVE-2025-65018

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From version 1.6.0 to before 1.6.51, there is a heap buffer overflow vulnerability in the libpng simplified API function pngimagefinishread when processing...

Security update for pngcheck (moderate)

openSUSE Security Update: Security update for pngcheck Announcement ID: openSUSE-SU-2022:10154-1 Rating: moderate References: Affected Products: openSUSE Backports SLE-15-SP4 An update that contains security fixes can now be installed. Description: This update for pngcheck fixes the following...

Security update for pngcheck (moderate)

openSUSE Security Update: Security update for pngcheck Announcement ID: openSUSE-SU-2022:10142-1 Rating: moderate References: 1202662 Cross-References: CVE-2020-35511 CVSS scores: CVE-2020-35511 NVD : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: openSUSE Backports SLE-15-SP...

Updated pngcheck packages fix a security vulnerability

This update fixes a divide-by-zero crash bug and probable vulnerability in interlaced images with extra compressed data beyond the nominal end of the image data. found by "chiba of topsec alpha lab" rhbz1949800...

MGASA-2021-0210 Updated pngcheck packages fix a security vulnerability

This update fixes a divide-by-zero crash bug and probable vulnerability in interlaced images with extra compressed data beyond the nominal end of the image data. found by "chiba of topsec alpha lab" rhbz1949800...

SUSE SLED12 / SLES12 Security Update : libpng16 (SUSE-SU-2015:0092-1)

This update fixes the following security issues : - CVE-2014-9495: libpng versions heap overflow vulnerability, that under certain circumstances could be exploit. bnc912076 - CVE-2015-0973: A heap-based overflow was found in the pngcombinerow function of the libpng library, when very large...

Security update for libpng16 (important)

libpng was updated to fix some security issues: CVE-2014-9495 bnc912076: Heap-buffer overflow pngcombinerow with very wide interlaced images CVE-2015-0973 bnc912929: overflow in pngreadIDATdata libpng is now also build with -DPNGSAFELIMITSSUPPORTED...

png -- heap overflow for 32-bit builds

32-bit builds of PNG library are vulnerable to an unsigned integer overflow that is triggered by a crafted wide interlaced images. Overflow results in a heap corruption that will crash the application and may lead to the controlled overwrite of a selected portions of process address space...

Slackware Advisory SSA:2009-170-01 libpng

The remote host is missing an update as announced via advisory SSA:2009-170-01. OpenVAS Vulnerability Test $Id: esoftslkssa200917001.nasl 6598 2017-07-07 09:36:44Z cfischer $ Description: Auto-generated from the corresponding slackware advisory Authors: Thomas Reinke Copyright: Copyright c 2012...

SuSE 11 Security Update : libpng (SAT Patch Number 1039)

This update of libpng improves the parsing of 1-bit interlaced images. This bug could be abused to use 'out-of-bounds pixels' to read memory. CVE-2009-2042 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 updat...

openSUSE Security Update : libpng-devel (libpng-devel-1046)

This update of libpng improves the parsing of 1-bit interlaced images. This bug could be abused to use 'out-of-bounds pixels' to read memory. CVE-2009-2042 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...

openSUSE Security Update : libpng-devel (libpng-devel-1046)

This update of libpng improves the parsing of 1-bit interlaced images. This bug could be abused to use 'out-of-bounds pixels' to read memory. CVE-2009-2042 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...

GLSA-200906-01 : libpng: Information disclosure

The remote host is affected by the vulnerability described in GLSA-200906-01 libpng: Information disclosure Jeff Phillips discovered that libpng does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in...

libpng: Information disclosure

Background libpng is the official PNG reference library used to read, write and manipulate PNG images. Description Jeff Phillips discovered that libpng does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits ...

Out-of-bounds

libpng before 1.2.37 does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in certain rows of a PNG file and might allow remote attackers to read portions of sensitive memory via "out-of-bounds pixels" in t...