Lucene search
K

143 matches found

RedHat Linux
RedHat Linux
added 2026/01/21 2:9 p.m.3 views

libpng: LIBPNG heap buffer overflow

A buffer overflow flaw has been discovered in libpng. There is a heap buffer overflow vulnerability in the libpng simplified API function pngimagefinishread when processing 16-bit interlaced PNGs with 8-bit output format. Attacker-crafted interlaced PNG files cause heap writes beyond allocated...

7.1CVSS5.9AI score0.00224EPSS
Exploits4References9
RedHat Linux
RedHat Linux
added 2026/01/21 1:39 p.m.2 views

libpng: LIBPNG heap buffer overflow

A buffer overflow flaw has been discovered in libpng. There is a heap buffer overflow vulnerability in the libpng simplified API function pngimagefinishread when processing 16-bit interlaced PNGs with 8-bit output format. Attacker-crafted interlaced PNG files cause heap writes beyond allocated...

7.1CVSS5.9AI score0.00224EPSS
Exploits4References9
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.8 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.04 / 25.10 : libpng vulnerabilities (USN-7963-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.04 / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7963-1 advisory. It was discovered that the libpng simplified API incorrectly processed palette PNG images with partial transparency and gamma...

7.8CVSS6.2AI score0.00299EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.6 views

EulerOS 2.0 SP12 : libpng (EulerOS-SA-2026-1092)

According to the versions of the libpng package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From...

7.1CVSS6AI score0.00352EPSS
Exploits5References3
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.8 views

openSUSE 16 Security Update : libpng16 (openSUSE-SU-2026:20017-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20017-1 advisory. - CVE-2025-64505: heap buffer over-read in pngdoquantize when processing PNG files malformed palette indices bsc1254157. - CVE-2025-64506: heap...

7.1CVSS6.1AI score0.00352EPSS
Exploits6References15
OSV
OSV
added 2026/01/14 4:45 p.m.6 views

USN-7963-1 libpng1.6 vulnerabilities

It was discovered that the libpng simplified API incorrectly processed palette PNG images with partial transparency and gamma correction. If a user or automated system were tricked into opening a specially crafted PNG file, an attacker could use this issue to cause libpng to crash, resulting in a...

7.8CVSS6.8AI score0.00299EPSS
Exploits3References4
Ubuntu
Ubuntu
added 2026/01/14 4:45 p.m.10 views

USN-7963-1: libpng vulnerabilities

It was discovered that the libpng simplified API incorrectly processed palette PNG images with partial transparency and gamma correction. If a user or automated system were tricked into opening a specially crafted PNG file, an attacker could use this issue to cause libpng to crash, resulting in a...

7.8CVSS6.3AI score0.00299EPSS
Exploits3
SUSE CVE
SUSE CVE
added 2026/01/14 12:24 a.m.8 views

SUSE CVE-2026-22695

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.6.51 to 1.6.53, there is a heap buffer over-read in the libpng simplified API function pngimagefinishread when processing interlaced 16-bit PNGs with...

6.1CVSS7.2AI score0.00172EPSS
Exploits1References16
AstraLinux
AstraLinux
added 2026/01/13 2:1 p.m.4 views

Astra Linux – Vulnerability in libpng1.6

LIBPNG is a reference library used in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. Starting from version 1.6.0 until 1.6.51, there was a heap buffer overflow vulnerability in the libpng simplified API function pngimagefinishread, when processing...

7.1CVSS6.7AI score0.00224EPSS
Exploits4References3
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-22695

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.6.51 to 1.6.53,...

7.1CVSS6.5AI score0.00172EPSS
Exploits1References3
Snyk
Snyk
added 2026/01/12 11:55 p.m.4 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read in the pngimagefinishread function when processing interlaced 16-bit PNG images with an 8-bit output format and a non-minimal row stride. An attacker can cause information disclosure or application crash by supplying...

7.1CVSS6.3AI score0.00172EPSS
Exploits1References2
OSV
OSV
added 2026/01/12 11:15 p.m.8 views

AZL-74267 CVE-2026-22695 affecting package libpng for versions less than 1.6.54-1

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.6.51 to 1.6.53, there is a heap buffer over-read in the libpng simplified API function pngimagefinishread when processing interlaced 16-bit PNGs with...

7.1CVSS5.9AI score0.00172EPSS
Exploits1References1
OSV
OSV
added 2026/01/12 11:15 p.m.6 views

ALPINE-CVE-2026-22695

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.6.51 to 1.6.53, there is a heap buffer over-read in the libpng simplified API function pngimagefinishread when processing interlaced 16-bit PNGs with...

7.1CVSS5.8AI score0.00172EPSS
Exploits1References1
OSV
OSV
added 2026/01/12 11:15 p.m.6 views

DEBIAN-CVE-2026-22695

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.6.51 to 1.6.53, there is a heap buffer over-read in the libpng simplified API function pngimagefinishread when processing interlaced 16-bit PNGs with...

7.1CVSS6.7AI score0.00172EPSS
Exploits1References1
NVD
NVD
added 2026/01/12 11:15 p.m.13 views

CVE-2026-22695

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.6.51 to 1.6.53, there is a heap buffer over-read in the libpng simplified API function pngimagefinishread when processing interlaced 16-bit PNGs with...

7.1CVSS0.00172EPSS
Exploits1References4
OSV
OSV
added 2026/01/12 11:15 p.m.2 views

UBUNTU-CVE-2026-22695

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.6.51 to 1.6.53, there is a heap buffer over-read in the libpng simplified API function pngimagefinishread when processing interlaced 16-bit PNGs with...

7.1CVSS6AI score0.00172EPSS
Exploits1References6
UbuntuCve
UbuntuCve
added 2026/01/12 11:15 p.m.7 views

CVE-2026-22695

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.6.51 to 1.6.53, there is a heap buffer over-read in the libpng simplified API function pngimagefinishread when processing interlaced 16-bit PNGs with...

7.1CVSS6AI score0.00172EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/01/12 10:55 p.m.7 views

CVE-2026-22695 LIBPNG has a heap buffer over-read in png_image_read_direct_scaled (regression from CVE-2025-65018 fix)

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.6.51 to 1.6.53, there is a heap buffer over-read in the libpng simplified API function pngimagefinishread when processing interlaced 16-bit PNGs with...

6.1CVSS6.7AI score0.00172EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/01/12 10:55 p.m.24 views

CVE-2026-22695 LIBPNG has a heap buffer over-read in png_image_read_direct_scaled (regression from CVE-2025-65018 fix)

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.6.51 to 1.6.53, there is a heap buffer over-read in the libpng simplified API function pngimagefinishread when processing interlaced 16-bit PNGs with...

6.1CVSS0.00172EPSS
Exploits1References4
CVE
CVE
added 2026/01/12 10:55 p.m.64 views

CVE-2026-22695

CVE-2026-22695 affects libpng 1.6.51–1.6.53 with a heap buffer over-read in the simplified API png_image_finish_read when processing interlaced 16‑bit PNGs with 8‑bit output and non-minimal row stride; this is a regression introduced by the fix for CVE-2025‑65018. The issue is fixed in libpng 1.6...

7.1CVSS6.7AI score0.00172EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder