Libpng

Libpng

57 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.4

CVE-2026-34757

Exploit
  • EPSS 0.02%
  • Veröffentlicht 09.04.2026 14:41:18
  • Zuletzt bearbeitet 13.05.2026 23:07:51

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From 1.0.9 to before 1.6.57, passing a pointer obtained from png_get_PLTE, png_get_tRNS, or png_get_hIST back ...

7.6

CVE-2026-33636

Medienbericht
  • EPSS 0.05%
  • Veröffentlicht 26.03.2026 16:51:58
  • Zuletzt bearbeitet 02.04.2026 18:42:02

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. In versions 1.6.36 through 1.6.55, an out-of-bounds read and write exists in libpng's ARM/AArch64 Neon-optimiz...

7.5

CVE-2026-33416

Medienbericht Exploit
  • EPSS 0.06%
  • Veröffentlicht 26.03.2026 16:48:54
  • Zuletzt bearbeitet 02.04.2026 20:28:33

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. In versions 1.2.1 through 1.6.55, `png_set_tRNS` and `png_set_PLTE` each alias a heap-allocated buffer between...

8.1

CVE-2026-25646

Medienbericht Exploit
  • EPSS 0.08%
  • Veröffentlicht 10.02.2026 17:04:38
  • Zuletzt bearbeitet 13.02.2026 20:43:44

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. Prior to 1.6.55, an out-of-bounds read vulnerability exists in the png_set_quantize() API function. When the f...

5.5

CVE-2025-28162

Exploit
  • EPSS 0.02%
  • Veröffentlicht 27.01.2026 00:00:00
  • Zuletzt bearbeitet 06.02.2026 20:06:44

Buffer Overflow vulnerability in libpng 1.6.43-1.6.46 allows a local attacker to cause a denial of service via the pngimage with AddressSanitizer (ASan), the program leaks memory in various locations, eventually leading to high memory usage and causi...

5.5

CVE-2025-28164

Exploit
  • EPSS 0.02%
  • Veröffentlicht 27.01.2026 00:00:00
  • Zuletzt bearbeitet 04.03.2026 19:42:07

Buffer Overflow vulnerability in libpng 1.6.43-1.6.46 allows a local attacker to cause a denial of service via png_create_read_struct() function.

7.8

CVE-2026-22801

  • EPSS 0.02%
  • Veröffentlicht 12.01.2026 22:57:58
  • Zuletzt bearbeitet 21.01.2026 18:58:18

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From 1.6.26 to 1.6.53, there is an integer truncation in the libpng simplified write API functions png_write_i...

7.1

CVE-2026-22695

Exploit
  • EPSS 0.04%
  • Veröffentlicht 12.01.2026 22:55:40
  • Zuletzt bearbeitet 21.01.2026 18:58:55

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From 1.6.51 to 1.6.53, there is a heap buffer over-read in the libpng simplified API function png_image_finish...

7.1

CVE-2025-66293

Exploit
  • EPSS 0.14%
  • Veröffentlicht 03.12.2025 20:33:57
  • Zuletzt bearbeitet 16.12.2025 19:12:50

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. Prior to 1.6.52, an out-of-bounds read vulnerability in libpng's simplified API allows reading up to 1012 byte...

7.1

CVE-2025-65018

Exploit
  • EPSS 0.07%
  • Veröffentlicht 24.11.2025 23:50:18
  • Zuletzt bearbeitet 26.11.2025 18:34:53

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From version 1.6.0 to before 1.6.51, there is a heap buffer overflow vulnerability in the libpng simplified AP...