CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

39 matches found

Google Go 安全漏洞

Google Go is a static, strongly typed, compiled, concurrent programming language with garbage collection features from the American company Google. There is a security vulnerability in Google Go. This vulnerability arises when accessing pixels in an invalid image using palette index values that...

5.3CVSS5.8AI score0.00039EPSS

Exploits0References4

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в libpng1.6

LIBPNG is a reference library used in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. Prior to version 1.6.51, there was a heap buffer over-read vulnerability in the libpng’s pngdoquantize function when processing PNG files with malformed palette...

6.1CVSS6.4AI score0.00014EPSS

Exploits2References2

Tenable Nessus•added 2026/03/16 12:0 a.m.•3 views

EulerOS 2.0 SP10 : libpng (EulerOS-SA-2026-1341)

According to the versions of the libpng package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From...

7.1CVSS6.7AI score0.00137EPSS

Exploits6References6

OSV•added 2026/03/02 11:23 a.m.•4 views

CLSA-2026-1772450608 libpng15: Fix of CVE-2026-25646

CVE-2026-25646: fix heap buffer overflow in pngsetquantize caused by stale palette indices in the color distance hash table...

8.3CVSS6.2AI score0.00081EPSS

Exploits1References1

OSV•added 2026/03/02 11:5 a.m.•2 views

CLSA-2026-1772449504 libpng15: Fix of CVE-2026-25646

CVE-2026-25646: fix heap buffer overflow in pngsetquantize caused by stale palette indices in the color distance hash table...

8.3CVSS6.2AI score0.00081EPSS

Exploits1References1

OSV•added 2026/02/23 9:51 a.m.•2 views

CLSA-2026-1771840259 libpng: Fix of CVE-2026-25646

CVE-2026-25646: fix out-of-bounds read and potential heap buffer overflow in pngsetquantize caused by stale palette indices during color pruning...

8.3CVSS6.2AI score0.00081EPSS

Exploits1References1

OSV•added 2026/02/23 9:39 a.m.•2 views

CLSA-2026-1771839565 libpng: Fix of CVE-2026-25646

CVE-2026-25646: fix out-of-bounds read and potential heap buffer overflow in pngsetquantize caused by stale palette indices during color pruning...

8.3CVSS7.5AI score0.00081EPSS

Exploits1References1

Tenable Nessus•added 2026/01/22 12:0 a.m.•3 views

Azure Linux 3.0 Security Update: CBL-Mariner Releases (CVE-2025-64505)

The version of CBL-Mariner Releases installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-64505 advisory. - LIBPNG is a reference library for use in applications that read, create, and manipulate PNG...

6.1CVSS5.8AI score0.00014EPSS

Exploits2References1

Tenable Nessus•added 2026/01/05 12:0 a.m.•6 views

Amazon Linux 2 : libpng, --advisory ALAS2-2025-3112 (ALAS-2025-3112)

The version of libpng installed on the remote host is prior to 1.5.13-8. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-3112 advisory. A heap buffer over-read vulnerability exists in libpng's pngdoquantize function when processing PNG files with malformed...

7.1CVSS6AI score0.00079EPSS

Exploits4References6

Amazon•added 2026/01/05 12:0 a.m.•4 views

Medium: libpng12

Issue Overview: A heap buffer over-read vulnerability exists in libpng's pngdoquantize function when processing PNG files with malformed palette indices. The vulnerability occurs when palettelookup array bounds are not validated against externally-supplied image data, allowing an attacker to craf...

7.1CVSS7.3AI score0.00079EPSS

Exploits4

Tenable Nessus•added 2025/12/20 12:0 a.m.•0 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: libpng (UTSA-2025-991300)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991300 advisory. LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. Prior to version 1.6.51, a...

6.1CVSS5.8AI score0.00014EPSS

Exploits2References4

Amazon•added 2025/12/08 12:0 a.m.•6 views

Important: libpng

7.1CVSS7.3AI score0.00079EPSS

Exploits5

OSV•added 2025/12/01 10:31 p.m.•1 views

JLSEC-2025-328 LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portabl...

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. Prior to version 1.6.51, a heap buffer over-read vulnerability exists in libpng's pngdoquantize function when processing PNG files with malformed palette...

6.1CVSS7.1AI score0.00014EPSS

Exploits2References3

OSV•added 2025/11/28 12:51 p.m.•6 views

OESA-2025-2763 libpng security update

The libpng package contains libraries used by other programs for reading and writing PNG format files. The PNG format was designed as a replacement for GIF and, to a lesser extent, TIFF, with many improvements and extensions and lack of patent problems. Security Fixes: LIBPNG is a reference libra...

7.1CVSS7.4AI score0.00079EPSS

Exploits5References5

OSV•added 2025/11/25 12:15 a.m.•1 views

AZL-70763 CVE-2025-64505 affecting package libpng for versions less than 1.6.51-1

6.1CVSS6.2AI score0.00014EPSS

Exploits2References1

OSV•added 2025/11/25 12:15 a.m.•1 views

AZL-70918 CVE-2025-64505 affecting package openjpeg2 2.3.1-12

6.1CVSS6.2AI score0.00014EPSS

Exploits2References1

OSV•added 2025/11/25 12:15 a.m.•0 views

AZL-70894 CVE-2025-64505 affecting package fltk 1.3.5-4