Количество 26
Количество 26
BDU:2026-02925
Уязвимость библиотеки для работы с растровой графикой в формате PNG Libpng, связанная с чтением за допустимыми границами буфера данных, позволяющая нарушителю получить доступ к конфиденциальным данным, а также вызвать отказ в обслуживании
CVE-2025-64720
LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From version 1.6.0 to before 1.6.51, an out-of-bounds read vulnerability exists in png_image_read_composite when processing palette images with PNG_FLAG_OPTIMIZE_ALPHA enabled. The palette compositing code in png_init_read_transformations incorrectly applies background compositing during premultiplication, violating the invariant component ≤ alpha × 257 required by the simplified PNG API. This issue has been patched in version 1.6.51.
CVE-2025-64720
LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From version 1.6.0 to before 1.6.51, an out-of-bounds read vulnerability exists in png_image_read_composite when processing palette images with PNG_FLAG_OPTIMIZE_ALPHA enabled. The palette compositing code in png_init_read_transformations incorrectly applies background compositing during premultiplication, violating the invariant component ≤ alpha × 257 required by the simplified PNG API. This issue has been patched in version 1.6.51.
CVE-2025-64720
LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From version 1.6.0 to before 1.6.51, an out-of-bounds read vulnerability exists in png_image_read_composite when processing palette images with PNG_FLAG_OPTIMIZE_ALPHA enabled. The palette compositing code in png_init_read_transformations incorrectly applies background compositing during premultiplication, violating the invariant component ≤ alpha × 257 required by the simplified PNG API. This issue has been patched in version 1.6.51.
CVE-2025-64720
LIBPNG is vulnerable to a buffer overflow in `png_image_read_composite` via incorrect palette premultiplication
CVE-2025-64720
LIBPNG is a reference library for use in applications that read, creat ...
ELSA-2026-0251
ELSA-2026-0251: libpng security update (IMPORTANT)
RLSA-2026:0241
Important: libpng security update
RLSA-2026:0238
Important: libpng security update
RLSA-2026:0237
Important: libpng security update
ELSA-2026-0241
ELSA-2026-0241: libpng security update (IMPORTANT)
ELSA-2026-0238
ELSA-2026-0238: libpng security update (IMPORTANT)
ELSA-2026-0237
ELSA-2026-0237: libpng security update (IMPORTANT)
ELSA-2026-0125
ELSA-2026-0125: mingw-libpng security update (IMPORTANT)
SUSE-SU-2025:4533-1
Security update for libpng16
openSUSE-SU-2026:20017-1
Security update for libpng16
SUSE-SU-2025:4494-1
Security update for libpng16
SUSE-SU-2025:4436-1
Security update for libpng16
RLSA-2026:0933
Important: java-25-openjdk security update
RLSA-2026:0932
Important: java-1.8.0-openjdk security update
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2026-02925 Уязвимость библиотеки для работы с растровой графикой в формате PNG Libpng, связанная с чтением за допустимыми границами буфера данных, позволяющая нарушителю получить доступ к конфиденциальным данным, а также вызвать отказ в обслуживании | CVSS3: 7.1 | 0% Низкий | 10 месяцев назад |
 | CVE-2025-64720 LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From version 1.6.0 to before 1.6.51, an out-of-bounds read vulnerability exists in png_image_read_composite when processing palette images with PNG_FLAG_OPTIMIZE_ALPHA enabled. The palette compositing code in png_init_read_transformations incorrectly applies background compositing during premultiplication, violating the invariant component ≤ alpha × 257 required by the simplified PNG API. This issue has been patched in version 1.6.51. | CVSS3: 7.1 | 0% Низкий | 4 месяца назад |
 | CVE-2025-64720 LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From version 1.6.0 to before 1.6.51, an out-of-bounds read vulnerability exists in png_image_read_composite when processing palette images with PNG_FLAG_OPTIMIZE_ALPHA enabled. The palette compositing code in png_init_read_transformations incorrectly applies background compositing during premultiplication, violating the invariant component ≤ alpha × 257 required by the simplified PNG API. This issue has been patched in version 1.6.51. | CVSS3: 7.1 | 0% Низкий | 4 месяца назад |
 | CVE-2025-64720 LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From version 1.6.0 to before 1.6.51, an out-of-bounds read vulnerability exists in png_image_read_composite when processing palette images with PNG_FLAG_OPTIMIZE_ALPHA enabled. The palette compositing code in png_init_read_transformations incorrectly applies background compositing during premultiplication, violating the invariant component ≤ alpha × 257 required by the simplified PNG API. This issue has been patched in version 1.6.51. | CVSS3: 7.1 | 0% Низкий | 4 месяца назад |
 | CVE-2025-64720 LIBPNG is vulnerable to a buffer overflow in `png_image_read_composite` via incorrect palette premultiplication | CVSS3: 7.1 | 0% Низкий | 4 месяца назад |
| CVE-2025-64720 LIBPNG is a reference library for use in applications that read, creat ... | CVSS3: 7.1 | 0% Низкий | 4 месяца назад |
| ELSA-2026-0251 ELSA-2026-0251: libpng security update (IMPORTANT) | 2 месяца назад | ||
 | RLSA-2026:0241 Important: libpng security update | 3 месяца назад | ||
| RLSA-2026:0238 Important: libpng security update | 3 месяца назад | ||
| RLSA-2026:0237 Important: libpng security update | 3 месяца назад | ||
| ELSA-2026-0241 ELSA-2026-0241: libpng security update (IMPORTANT) | 3 месяца назад | ||
| ELSA-2026-0238 ELSA-2026-0238: libpng security update (IMPORTANT) | 3 месяца назад | ||
| ELSA-2026-0237 ELSA-2026-0237: libpng security update (IMPORTANT) | 3 месяца назад | ||
| ELSA-2026-0125 ELSA-2026-0125: mingw-libpng security update (IMPORTANT) | 3 месяца назад | ||
 | SUSE-SU-2025:4533-1 Security update for libpng16 | 3 месяца назад | ||
| openSUSE-SU-2026:20017-1 Security update for libpng16 | 3 месяца назад | ||
| SUSE-SU-2025:4494-1 Security update for libpng16 | 3 месяца назад | ||
| SUSE-SU-2025:4436-1 Security update for libpng16 | 3 месяца назад | ||
| RLSA-2026:0933 Important: java-25-openjdk security update | около 2 месяцев назад | ||
| RLSA-2026:0932 Important: java-1.8.0-openjdk security update | 2 месяца назад |
Уязвимостей на страницу