Nixpkgs Security Tracker

Login with GitHub

Suggestions search

All statuses
Filter by:
With package: libpng

Found 2 matching suggestions

View:
Compact
Detailed
Dismissed
Permalink CVE-2026-3713
5.3 MEDIUM
  • CVSS version: 3.1
  • Attack vector (AV):
  • Attack complexity (AC):
  • Privileges required (PR):
  • User interaction (UI):
  • Scope (S):
  • Confidentiality impact (C):
  • Integrity impact (I):
  • Availability impact (A):
updated 1 week, 6 days ago by @mweinelt Activity log
  • Created automatic suggestion 2 weeks ago
  • @mweinelt removed
    6 packages
    • libpng12
    • perlPackages.ImagePNGLibpng
    • perl5Packages.ImagePNGLibpng
    • perl538Packages.ImagePNGLibpng
    • perl540Packages.ImagePNGLibpng
    • tests.pkg-config.defaultPkgConfigPackages.libpng
    1 week, 6 days ago
  • @mweinelt dismissed 1 week, 6 days ago
pnggroup libpng pnm2png pnm2png.c do_pnm2png heap-based overflow

A flaw has been found in pnggroup libpng up to 1.6.55. Affected by this vulnerability is the function do_pnm2png of the file contrib/pngminus/pnm2png.c of the component pnm2png. This manipulation of the argument width/height causes heap-based buffer overflow. The attack is restricted to local execution. The exploit has been published and may be used. The project was informed of the problem early through an issue report but has not responded yet.

References

Affected products

libpng
  • ==1.6.9
  • ==1.6.28
  • ==1.6.39
  • ==1.6.29
  • ==1.6.45
  • ==1.6.55
  • ==1.6.32
  • ==1.6.19
  • ==1.6.5
  • ==1.6.34
  • ==1.6.35
  • ==1.6.17
  • ==1.6.21
  • ==1.6.33
  • ==1.6.3
  • ==1.6.4
  • ==1.6.15
  • ==1.6.22
  • ==1.6.23
  • ==1.6.37
  • ==1.6.53
  • ==1.6.7
  • ==1.6.30
  • ==1.6.51
  • ==1.6.10
  • ==1.6.2
  • ==1.6.12
  • ==1.6.6
  • ==1.6.48
  • ==1.6.16
  • ==1.6.0
  • ==1.6.8
  • ==1.6.25
  • ==1.6.52
  • ==1.6.13
  • ==1.6.41
  • ==1.6.20
  • ==1.6.1
  • ==1.6.50
  • ==1.6.40
  • ==1.6.46
  • ==1.6.36
  • ==1.6.11
  • ==1.6.27
  • ==1.6.18
  • ==1.6.47
  • ==1.6.49
  • ==1.6.26
  • ==1.6.24
  • ==1.6.38
  • ==1.6.14
  • ==1.6.44
  • ==1.6.54
  • ==1.6.31
  • ==1.6.42
  • ==1.6.43

Matching in nixpkgs

Ignored packages (6)

Package maintainers

Only in contrib, not built in our packages.
Untriaged
Permalink CVE-2026-25646
updated 1 month, 1 week ago by @LeSuisse Activity log
  • Created automatic suggestion 1 month, 1 week ago
  • @LeSuisse removed
    5 packages
    • libpng12
    • perlPackages.ImagePNGLibpng
    • perl538Packages.ImagePNGLibpng
    • perl540Packages.ImagePNGLibpng
    • tests.pkg-config.defaultPkgConfigPackages.libpng
    1 month, 1 week ago
LIBPNG has a heap buffer overflow in png_set_quantize

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. Prior to 1.6.55, an out-of-bounds read vulnerability exists in the png_set_quantize() API function. When the function is called with no histogram and the number of colors in the palette is more than twice the maximum supported by the user's display, certain palettes will cause the function to enter into an infinite loop that reads past the end of an internal heap-allocated buffer. The images that trigger this vulnerability are valid per the PNG specification. This vulnerability is fixed in 1.6.55.

References

Affected products

libpng
  • ==< 1.6.55

Matching in nixpkgs

Package maintainers