Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: libpng (UTSA-2026-005396)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005396 advisory. LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.6.26 to 1.6.53, ther...

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read via the pngwriteimage16bit or pngwriteimage8bit functions when a negative row stride or a stride exceeding 65535 bytes is provided. An attacker can cause a heap buffer over-read by supplying specially crafted input to...

PT-2026-2325

Name of the Vulnerable Software and Affected Versions libpng versions 1.6.26 through 1.6.53 Description libpng is a library used by applications to read, create, and manipulate PNG image files. A flaw exists in the png write image 16bit and png write image 8bit functions due to an integer...

CVE-2022-21725

Tensorflow is an Open Source Machine Learning Framework. The estimator for the cost of some convolution operations can be made to execute a division by 0. The function fails to check that the stride argument is strictly positive. Hence, the fix is to add a check for the stride argument to ensure ...