Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/18 12:0 a.m.9 views

Oracle Linux 10 : libpng (ELSA-2026-18064)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-18064 advisory. 2:1.6.40-8.4 - fix CVE-2026-33416: use-after-free via pointer aliasing in pngsettRNS and pngsetPLTE RHEL-161324 Tenable has extracted the preceding descriptio...

7.5CVSS6.3AI score0.01052EPSS
Exploits1References2
OSV
OSV
added 2026/05/16 10:49 a.m.15 views

CLSA-2026-1778928586 libpng: Fix of CVE-2026-34757

CVE-2026-34757: use-after-free in pngsetPLTE, pngsettRNS, pngsethIST, pngsettext, pngsetsPLT and pngsetunknownchunks when the caller passes the pointer returned by the corresponding getter back to the setter...

5.1CVSS5.8AI score0.00195EPSS
Exploits1References1
OSV
OSV
added 2026/04/24 11:46 a.m.3 views

SUSE-SU-2026:1601-1 Security update for libpng16

This update for libpng16 fixes the following issue: - CVE-2026-34757: information disclosure and data corruption due to use-after-free in pngsetPLTE, pngsettRNS and pngsethIST bsc1261957...

5.1CVSS5.6AI score0.00195EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/04/15 12:0 a.m.9 views

SUSE SLES15: libpng16-16 / libpng16-16-32bit / libpng16-compat-devel / etc (SUSE-SU-2026:1323-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:1323-1 advisory. - CVE-2026-33416: use-after-free via pointer aliasing in pngsettRNS and pngsetPLTE can lead to arbitrary code execution bsc1260754. Tenable...

7.5CVSS6.6AI score0.01052EPSS
Exploits1References4
OSV
OSV
added 2026/04/14 10:44 a.m.2 views

SUSE-SU-2026:1311-1 Security update for libpng16

This update for libpng16 fixes the following issue: - CVE-2026-33416: use-after-free via pointer aliasing in pngsettRNS and pngsetPLTE can lead to arbitrary code execution bsc1260754...

7.5CVSS6.5AI score0.01052EPSS
Exploits1References3
Amazon
Amazon
added 2026/04/14 12:0 a.m.14 views

Important: libpng12

Issue Overview: LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. In versions 1.2.1 through 1.6.55, pngsettRNS and pngsetPLTE each alias a heap-allocated buffer between pngstruct and pnginfo, sharing a single...

7.5CVSS6.2AI score0.01052EPSS
Exploits1
OSV
OSV
added 2026/04/07 11:57 a.m.3 views

OPENSUSE-SU-2026:20466-1 Security update for libpng16

This update for libpng16 fixes the following issues: - CVE-2026-33416: use-after-free via pointer aliasing in pngsettRNS and pngsetPLTE can lead to arbitrary code execution bsc1260754. - CVE-2026-33636: out-of-bounds read/write in the palette expansion on ARM Neon can lead to information leak and...

7.6CVSS6.1AI score0.01052EPSS
Exploits1References4
Snyk
Snyk
added 2026/03/26 6:35 p.m.4 views

Use After Free

Overview Affected versions of this package are vulnerable to Use After Free in the pngsettRNS and pngsetPLTE functions, where a heap-allocated buffer is aliased between two structures with independent lifetimes. An attacker can cause memory corruption or potentially execute arbitrary code by...

8.1CVSS6.3AI score0.01052EPSS
Exploits1References2
Rows per page
Query Builder