CNNVD-202601-4540 Information

CNNVD ID

CNNVD-202601-4540

Related CVE

CVE-2025-28162

• CNNVD Published: 2026-01-27

Description (Chinese)

libpng是The PNG Development Group开源的一个可对PNG图形文件实现创建、读写等操作的PNG参考库。 libpng 1.6.43-1.6.46版本存在安全漏洞，该漏洞源于缓冲区溢出，可能导致本地攻击者通过pngimage造成拒绝服务。

Description (English)

Libpng is a PNG reference library for the creation, reading and writing of PNG graphics files from the Open Source of The PNG Development Group. Version 1.6.43-1.6.46 of libpng contains a security loophole that originates from the spilling out of the buffer zone and may lead to denial of services by local attackers through pngimage.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

The PNG Development Group

Published

2026-01-27

Last Modified

2026-02-24

References

https://gist.github.com/kittener/fbfdb9b5610c6b3db0d5dea045a07c60 https://github.com/pnggroup/libpng/issues/656

Patch

https://github.com/pnggroup/libpng/tags