Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
Typedeb
Namespacedebian
Namelibpng1.6
Version1.6.48-1+deb13u5
Qualifiers
distro trixie
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version1.6.51-1
Latest_non_vulnerable_version1.6.58-1
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-26ny-2nf5-33d9
vulnerability_id VCID-26ny-2nf5-33d9
summary libpng: libpng: Information disclosure and denial of service via out-of-bounds read/write in Neon palette expansion
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33636.json
reference_id
reference_type
scores
0
value 7.6
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33636.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-33636
reference_id
reference_type
scores
0
value 0.00045
scoring_system epss
scoring_elements 0.14165
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-33636
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-33636
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-33636
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1132013
reference_id 1132013
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1132013
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2451819
reference_id 2451819
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2451819
6
reference_url https://github.com/pnggroup/libpng/commit/7734cda20cf1236aef60f3bbd2267c97bbb40869
reference_id 7734cda20cf1236aef60f3bbd2267c97bbb40869
reference_type
scores
0
value 7.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-26T18:45:14Z/
url https://github.com/pnggroup/libpng/commit/7734cda20cf1236aef60f3bbd2267c97bbb40869
7
reference_url https://github.com/pnggroup/libpng/commit/aba9f18eba870d14fb52c5ba5d73451349e339c3
reference_id aba9f18eba870d14fb52c5ba5d73451349e339c3
reference_type
scores
0
value 7.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-26T18:45:14Z/
url https://github.com/pnggroup/libpng/commit/aba9f18eba870d14fb52c5ba5d73451349e339c3
8
reference_url https://github.com/pnggroup/libpng/security/advisories/GHSA-wjr5-c57x-95m2
reference_id GHSA-wjr5-c57x-95m2
reference_type
scores
0
value 7.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-26T18:45:14Z/
url https://github.com/pnggroup/libpng/security/advisories/GHSA-wjr5-c57x-95m2
9
reference_url https://access.redhat.com/errata/RHSA-2026:11805
reference_id RHSA-2026:11805
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:11805
10
reference_url https://access.redhat.com/errata/RHSA-2026:11813
reference_id RHSA-2026:11813
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:11813
11
reference_url https://access.redhat.com/errata/RHSA-2026:12264
reference_id RHSA-2026:12264
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:12264
12
reference_url https://access.redhat.com/errata/RHSA-2026:13342
reference_id RHSA-2026:13342
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13342
13
reference_url https://access.redhat.com/errata/RHSA-2026:13412
reference_id RHSA-2026:13412
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13412
14
reference_url https://access.redhat.com/errata/RHSA-2026:13533
reference_id RHSA-2026:13533
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13533
15
reference_url https://access.redhat.com/errata/RHSA-2026:13582
reference_id RHSA-2026:13582
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13582
16
reference_url https://access.redhat.com/errata/RHSA-2026:13583
reference_id RHSA-2026:13583
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13583
17
reference_url https://access.redhat.com/errata/RHSA-2026:13596
reference_id RHSA-2026:13596
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13596
18
reference_url https://access.redhat.com/errata/RHSA-2026:13600
reference_id RHSA-2026:13600
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13600
19
reference_url https://access.redhat.com/errata/RHSA-2026:13665
reference_id RHSA-2026:13665
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13665
20
reference_url https://access.redhat.com/errata/RHSA-2026:13682
reference_id RHSA-2026:13682
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13682
21
reference_url https://access.redhat.com/errata/RHSA-2026:13683
reference_id RHSA-2026:13683
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13683
22
reference_url https://access.redhat.com/errata/RHSA-2026:13922
reference_id RHSA-2026:13922
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13922
23
reference_url https://access.redhat.com/errata/RHSA-2026:13977
reference_id RHSA-2026:13977
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13977
24
reference_url https://access.redhat.com/errata/RHSA-2026:14223
reference_id RHSA-2026:14223
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:14223
25
reference_url https://access.redhat.com/errata/RHSA-2026:14303
reference_id RHSA-2026:14303
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:14303
26
reference_url https://access.redhat.com/errata/RHSA-2026:14790
reference_id RHSA-2026:14790
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:14790
27
reference_url https://access.redhat.com/errata/RHSA-2026:14791
reference_id RHSA-2026:14791
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:14791
28
reference_url https://access.redhat.com/errata/RHSA-2026:15889
reference_id RHSA-2026:15889
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:15889
29
reference_url https://access.redhat.com/errata/RHSA-2026:17524
reference_id RHSA-2026:17524
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:17524
30
reference_url https://access.redhat.com/errata/RHSA-2026:17567
reference_id RHSA-2026:17567
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:17567
31
reference_url https://access.redhat.com/errata/RHSA-2026:17603
reference_id RHSA-2026:17603
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:17603
32
reference_url https://access.redhat.com/errata/RHSA-2026:17642
reference_id RHSA-2026:17642
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:17642
33
reference_url https://access.redhat.com/errata/RHSA-2026:17685
reference_id RHSA-2026:17685
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:17685
34
reference_url https://access.redhat.com/errata/RHSA-2026:6732
reference_id RHSA-2026:6732
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6732
35
reference_url https://access.redhat.com/errata/RHSA-2026:7671
reference_id RHSA-2026:7671
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7671
36
reference_url https://access.redhat.com/errata/RHSA-2026:7672
reference_id RHSA-2026:7672
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7672
37
reference_url https://access.redhat.com/errata/RHSA-2026:8052
reference_id RHSA-2026:8052
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8052
38
reference_url https://access.redhat.com/errata/RHSA-2026:8459
reference_id RHSA-2026:8459
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8459
39
reference_url https://access.redhat.com/errata/RHSA-2026:9254
reference_id RHSA-2026:9254
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9254
40
reference_url https://access.redhat.com/errata/RHSA-2026:9255
reference_id RHSA-2026:9255
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9255
41
reference_url https://access.redhat.com/errata/RHSA-2026:9345
reference_id RHSA-2026:9345
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9345
42
reference_url https://access.redhat.com/errata/RHSA-2026:9638
reference_id RHSA-2026:9638
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9638
43
reference_url https://access.redhat.com/errata/RHSA-2026:9693
reference_id RHSA-2026:9693
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9693
44
reference_url https://usn.ubuntu.com/8251-1/
reference_id USN-8251-1
reference_type
scores
url https://usn.ubuntu.com/8251-1/
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%252Bdeb11u3%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u4?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u4?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u4%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u4?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u4?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u4%3Fdistro=trixie
5
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
6
url pkg:deb/debian/libpng1.6@1.6.56-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.56-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.56-1%3Fdistro=trixie
7
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2026-33636
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-26ny-2nf5-33d9
1
url VCID-3846-k31e-qqht
vulnerability_id VCID-3846-k31e-qqht
summary libpng: NULL pointer dereference in png_set_text_2()
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10087.json
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10087.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-10087
reference_id
reference_type
scores
0
value 0.00926
scoring_system epss
scoring_elements 0.76367
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-10087
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10087
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10087
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 1.9
scoring_system cvssv2
scoring_elements AV:L/AC:M/Au:N/C:N/I:N/A:P
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1409617
reference_id 1409617
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1409617
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=849799
reference_id 849799
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=849799
6
reference_url https://security.archlinux.org/ASA-201701-2
reference_id ASA-201701-2
reference_type
scores
url https://security.archlinux.org/ASA-201701-2
7
reference_url https://security.archlinux.org/ASA-201701-5
reference_id ASA-201701-5
reference_type
scores
url https://security.archlinux.org/ASA-201701-5
8
reference_url https://security.archlinux.org/AVG-119
reference_id AVG-119
reference_type
scores
0
value Low
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-119
9
reference_url https://security.archlinux.org/AVG-120
reference_id AVG-120
reference_type
scores
0
value Low
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-120
10
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-10087
reference_id CVE-2016-10087
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2016-10087
11
reference_url https://security.gentoo.org/glsa/201701-74
reference_id GLSA-201701-74
reference_type
scores
url https://security.gentoo.org/glsa/201701-74
12
reference_url https://usn.ubuntu.com/3712-1/
reference_id USN-3712-1
reference_type
scores
url https://usn.ubuntu.com/3712-1/
13
reference_url https://usn.ubuntu.com/3712-2/
reference_id USN-3712-2
reference_type
scores
url https://usn.ubuntu.com/3712-2/
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.27-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.27-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.27-1%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2016-10087
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3846-k31e-qqht
2
url VCID-3j8e-v8aq-myct
vulnerability_id VCID-3j8e-v8aq-myct
summary libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8472.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8472.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2015-8472
reference_id
reference_type
scores
0
value 0.04094
scoring_system epss
scoring_elements 0.88765
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2015-8472
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8472
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8472
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8540
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8540
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1281756
reference_id 1281756
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1281756
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=807112
reference_id 807112
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=807112
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2015-8472
reference_id CVE-2015-8472
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2015-8472
7
reference_url https://access.redhat.com/errata/RHSA-2015:2594
reference_id RHSA-2015:2594
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:2594
8
reference_url https://access.redhat.com/errata/RHSA-2015:2595
reference_id RHSA-2015:2595
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:2595
9
reference_url https://access.redhat.com/errata/RHSA-2015:2596
reference_id RHSA-2015:2596
reference_type
scores
url https://access.redhat.com/errata/RHSA-2015:2596
10
reference_url https://access.redhat.com/errata/RHSA-2016:0055
reference_id RHSA-2016:0055
reference_type
scores
url https://access.redhat.com/errata/RHSA-2016:0055
11
reference_url https://access.redhat.com/errata/RHSA-2016:0056
reference_id RHSA-2016:0056
reference_type
scores
url https://access.redhat.com/errata/RHSA-2016:0056
12
reference_url https://access.redhat.com/errata/RHSA-2016:0057
reference_id RHSA-2016:0057
reference_type
scores
url https://access.redhat.com/errata/RHSA-2016:0057
13
reference_url https://access.redhat.com/errata/RHSA-2016:0098
reference_id RHSA-2016:0098
reference_type
scores
url https://access.redhat.com/errata/RHSA-2016:0098
14
reference_url https://access.redhat.com/errata/RHSA-2016:0099
reference_id RHSA-2016:0099
reference_type
scores
url https://access.redhat.com/errata/RHSA-2016:0099
15
reference_url https://access.redhat.com/errata/RHSA-2016:0100
reference_id RHSA-2016:0100
reference_type
scores
url https://access.redhat.com/errata/RHSA-2016:0100
16
reference_url https://access.redhat.com/errata/RHSA-2016:0101
reference_id RHSA-2016:0101
reference_type
scores
url https://access.redhat.com/errata/RHSA-2016:0101
17
reference_url https://access.redhat.com/errata/RHSA-2016:1430
reference_id RHSA-2016:1430
reference_type
scores
url https://access.redhat.com/errata/RHSA-2016:1430
18
reference_url https://usn.ubuntu.com/2861-1/
reference_id USN-2861-1
reference_type
scores
url https://usn.ubuntu.com/2861-1/
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.20-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.20-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.20-1%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2015-8472
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3j8e-v8aq-myct
3
url VCID-5m1f-m92p-8bay
vulnerability_id VCID-5m1f-m92p-8bay
summary libpng: LIBPNG out-of-bounds read in png_image_read_composite
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-66293.json
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-66293.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-66293
reference_id
reference_type
scores
0
value 0.00137
scoring_system epss
scoring_elements 0.33385
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-66293
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-66293
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-66293
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1121877
reference_id 1121877
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1121877
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2418711
reference_id 2418711
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2418711
6
reference_url https://github.com/pnggroup/libpng/issues/764
reference_id 764
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-03T20:52:13Z/
url https://github.com/pnggroup/libpng/issues/764
7
reference_url https://github.com/pnggroup/libpng/commit/788a624d7387a758ffd5c7ab010f1870dea753a1
reference_id 788a624d7387a758ffd5c7ab010f1870dea753a1
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-03T20:52:13Z/
url https://github.com/pnggroup/libpng/commit/788a624d7387a758ffd5c7ab010f1870dea753a1
8
reference_url https://github.com/pnggroup/libpng/commit/a05a48b756de63e3234ea6b3b938b8f5f862484a
reference_id a05a48b756de63e3234ea6b3b938b8f5f862484a
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-03T20:52:13Z/
url https://github.com/pnggroup/libpng/commit/a05a48b756de63e3234ea6b3b938b8f5f862484a
9
reference_url https://github.com/pnggroup/libpng/security/advisories/GHSA-9mpm-9pxh-mg4f
reference_id GHSA-9mpm-9pxh-mg4f
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-03T20:52:13Z/
url https://github.com/pnggroup/libpng/security/advisories/GHSA-9mpm-9pxh-mg4f
10
reference_url https://access.redhat.com/errata/RHSA-2026:0125
reference_id RHSA-2026:0125
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0125
11
reference_url https://access.redhat.com/errata/RHSA-2026:0210
reference_id RHSA-2026:0210
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0210
12
reference_url https://access.redhat.com/errata/RHSA-2026:0211
reference_id RHSA-2026:0211
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0211
13
reference_url https://access.redhat.com/errata/RHSA-2026:0212
reference_id RHSA-2026:0212
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0212
14
reference_url https://access.redhat.com/errata/RHSA-2026:0216
reference_id RHSA-2026:0216
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0216
15
reference_url https://access.redhat.com/errata/RHSA-2026:0234
reference_id RHSA-2026:0234
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0234
16
reference_url https://access.redhat.com/errata/RHSA-2026:0237
reference_id RHSA-2026:0237
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0237
17
reference_url https://access.redhat.com/errata/RHSA-2026:0238
reference_id RHSA-2026:0238
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0238
18
reference_url https://access.redhat.com/errata/RHSA-2026:0241
reference_id RHSA-2026:0241
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0241
19
reference_url https://access.redhat.com/errata/RHSA-2026:0313
reference_id RHSA-2026:0313
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0313
20
reference_url https://access.redhat.com/errata/RHSA-2026:0321
reference_id RHSA-2026:0321
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0321
21
reference_url https://access.redhat.com/errata/RHSA-2026:0322
reference_id RHSA-2026:0322
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0322
22
reference_url https://access.redhat.com/errata/RHSA-2026:0323
reference_id RHSA-2026:0323
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0323
23
reference_url https://access.redhat.com/errata/RHSA-2026:0414
reference_id RHSA-2026:0414
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0414
24
reference_url https://access.redhat.com/errata/RHSA-2026:2072
reference_id RHSA-2026:2072
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2072
25
reference_url https://access.redhat.com/errata/RHSA-2026:2633
reference_id RHSA-2026:2633
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2633
26
reference_url https://access.redhat.com/errata/RHSA-2026:2659
reference_id RHSA-2026:2659
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2659
27
reference_url https://access.redhat.com/errata/RHSA-2026:2671
reference_id RHSA-2026:2671
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2671
28
reference_url https://access.redhat.com/errata/RHSA-2026:2974
reference_id RHSA-2026:2974
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:2974
29
reference_url https://access.redhat.com/errata/RHSA-2026:3415
reference_id RHSA-2026:3415
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3415
30
reference_url https://access.redhat.com/errata/RHSA-2026:3861
reference_id RHSA-2026:3861
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3861
31
reference_url https://access.redhat.com/errata/RHSA-2026:4419
reference_id RHSA-2026:4419
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4419
32
reference_url https://access.redhat.com/errata/RHSA-2026:6732
reference_id RHSA-2026:6732
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6732
33
reference_url https://access.redhat.com/errata/RHSA-2026:9254
reference_id RHSA-2026:9254
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9254
34
reference_url https://access.redhat.com/errata/RHSA-2026:9255
reference_id RHSA-2026:9255
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9255
35
reference_url https://usn.ubuntu.com/7963-1/
reference_id USN-7963-1
reference_type
scores
url https://usn.ubuntu.com/7963-1/
36
reference_url https://usn.ubuntu.com/8035-1/
reference_id USN-8035-1
reference_type
scores
url https://usn.ubuntu.com/8035-1/
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
6
url pkg:deb/debian/libpng1.6@1.6.52-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.52-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.52-1%3Fdistro=trixie
7
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2025-66293
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5m1f-m92p-8bay
4
url VCID-5n9b-crnu-j3hw
vulnerability_id VCID-5n9b-crnu-j3hw
summary libpng: does not check length of chunks against user limit
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12652.json
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12652.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-12652
reference_id
reference_type
scores
0
value 0.00626
scoring_system epss
scoring_elements 0.70538
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-12652
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12652
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12652
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url http://www.securityfocus.com/bid/109269
reference_id 109269
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:22:54Z/
url http://www.securityfocus.com/bid/109269
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1733956
reference_id 1733956
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1733956
6
reference_url https://github.com/pnggroup/libpng/commit/347538efbdc21b8df684ebd92d37400b3ce85d55
reference_id 347538efbdc21b8df684ebd92d37400b3ce85d55
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:22:54Z/
url https://github.com/pnggroup/libpng/commit/347538efbdc21b8df684ebd92d37400b3ce85d55
7
reference_url https://github.com/glennrp/libpng/blob/df7e9dae0c4aac63d55361e35709c864fa1b8363/ANNOUNCE
reference_id ANNOUNCE
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:22:54Z/
url https://github.com/glennrp/libpng/blob/df7e9dae0c4aac63d55361e35709c864fa1b8363/ANNOUNCE
8
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-12652
reference_id CVE-2017-12652
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2017-12652
9
reference_url https://support.f5.com/csp/article/K88124225
reference_id K88124225
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:22:54Z/
url https://support.f5.com/csp/article/K88124225
10
reference_url https://support.f5.com/csp/article/K88124225?utm_source=f5support&utm_medium=RSS
reference_id K88124225?utm_source=f5support&utm_medium=RSS
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:22:54Z/
url https://support.f5.com/csp/article/K88124225?utm_source=f5support&utm_medium=RSS
11
reference_url https://security.netapp.com/advisory/ntap-20220506-0003/
reference_id ntap-20220506-0003
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:22:54Z/
url https://security.netapp.com/advisory/ntap-20220506-0003/
12
reference_url https://access.redhat.com/errata/RHSA-2020:3901
reference_id RHSA-2020:3901
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3901
13
reference_url https://usn.ubuntu.com/5432-1/
reference_id USN-5432-1
reference_type
scores
url https://usn.ubuntu.com/5432-1/
14
reference_url https://usn.ubuntu.com/USN-5432-2/
reference_id USN-USN-5432-2
reference_type
scores
url https://usn.ubuntu.com/USN-5432-2/
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.32-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.32-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.32-1%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2017-12652
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5n9b-crnu-j3hw
5
url VCID-5qkr-qykw-vqgt
vulnerability_id VCID-5qkr-qykw-vqgt
summary
references
0
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40930
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40930
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.37-4?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-4?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-4%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2026-40930
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5qkr-qykw-vqgt
6
url VCID-66u3-82zs-5bek
vulnerability_id VCID-66u3-82zs-5bek
summary libpng: LIBPNG heap buffer over-read
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-64506.json
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-64506.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-64506
reference_id
reference_type
scores
0
value 0.0002
scoring_system epss
scoring_elements 0.06098
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-64506
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64506
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64506
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1121218
reference_id 1121218
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1121218
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2416906
reference_id 2416906
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2416906
6
reference_url https://github.com/pnggroup/libpng/commit/2bd84c019c300b78e811743fbcddb67c9d9bf821
reference_id 2bd84c019c300b78e811743fbcddb67c9d9bf821
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-25T19:26:55Z/
url https://github.com/pnggroup/libpng/commit/2bd84c019c300b78e811743fbcddb67c9d9bf821
7
reference_url https://github.com/pnggroup/libpng/pull/749
reference_id 749
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-25T19:26:55Z/
url https://github.com/pnggroup/libpng/pull/749
8
reference_url https://github.com/pnggroup/libpng/security/advisories/GHSA-qpr4-xm66-hww6
reference_id GHSA-qpr4-xm66-hww6
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-25T19:26:55Z/
url https://github.com/pnggroup/libpng/security/advisories/GHSA-qpr4-xm66-hww6
9
reference_url https://security.gentoo.org/glsa/202511-06
reference_id GLSA-202511-06
reference_type
scores
url https://security.gentoo.org/glsa/202511-06
10
reference_url https://access.redhat.com/errata/RHSA-2026:6732
reference_id RHSA-2026:6732
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6732
11
reference_url https://usn.ubuntu.com/7924-1/
reference_id USN-7924-1
reference_type
scores
url https://usn.ubuntu.com/7924-1/
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
6
url pkg:deb/debian/libpng1.6@1.6.51-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.51-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.51-1%3Fdistro=trixie
7
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2025-64506
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-66u3-82zs-5bek
7
url VCID-6ytz-41qe-nqek
vulnerability_id VCID-6ytz-41qe-nqek
summary libpng: Segmentation fault in png.c:png_free_data function causing denial of service
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14048.json
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14048.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-14048
reference_id
reference_type
scores
0
value 0.00745
scoring_system epss
scoring_elements 0.73348
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-14048
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14048
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14048
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1608073
reference_id 1608073
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1608073
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-14048
reference_id CVE-2018-14048
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2018-14048
6
reference_url https://usn.ubuntu.com/5432-1/
reference_id USN-5432-1
reference_type
scores
url https://usn.ubuntu.com/5432-1/
7
reference_url https://usn.ubuntu.com/USN-5432-2/
reference_id USN-USN-5432-2
reference_type
scores
url https://usn.ubuntu.com/USN-5432-2/
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.37-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-1%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2018-14048
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6ytz-41qe-nqek
8
url VCID-9cut-5v1e-kfgf
vulnerability_id VCID-9cut-5v1e-kfgf
summary libpng: Heap-buffer overflow png_combine_row() with very wide interlaced images
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0973.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0973.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2015-0973
reference_id
reference_type
scores
0
value 0.02006
scoring_system epss
scoring_elements 0.83974
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2015-0973
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0973
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0973
3
reference_url http://www.openwall.com/lists/oss-security/2015/01/10/1
reference_id 1
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:25:31Z/
url http://www.openwall.com/lists/oss-security/2015/01/10/1
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1177327
reference_id 1177327
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1177327
5
reference_url http://www.openwall.com/lists/oss-security/2015/01/10/3
reference_id 3
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:25:31Z/
url http://www.openwall.com/lists/oss-security/2015/01/10/3
6
reference_url http://sourceforge.net/p/png-mng/mailman/message/33173461/
reference_id 33173461
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:25:31Z/
url http://sourceforge.net/p/png-mng/mailman/message/33173461/
7
reference_url http://secunia.com/advisories/62725
reference_id 62725
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:25:31Z/
url http://secunia.com/advisories/62725
8
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773823
reference_id 773823
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773823
9
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775673
reference_id 775673
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775673
10
reference_url https://nvd.nist.gov/vuln/detail/CVE-2015-0973
reference_id CVE-2015-0973
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2015-0973
11
reference_url http://tfpwn.com/files/libpng_heap_overflow_1.6.15.txt
reference_id libpng_heap_overflow_1.6.15.txt
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:25:31Z/
url http://tfpwn.com/files/libpng_heap_overflow_1.6.15.txt
12
reference_url https://security.netapp.com/advisory/ntap-20240719-0005/
reference_id ntap-20240719-0005
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:25:31Z/
url https://security.netapp.com/advisory/ntap-20240719-0005/
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.16-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.16-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.16-1%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2015-0973
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9cut-5v1e-kfgf
9
url VCID-9jye-h6m1-uqhf
vulnerability_id VCID-9jye-h6m1-uqhf
summary libpng: LIBPNG heap buffer overflow via malformed palette index
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-64505.json
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-64505.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-64505
reference_id
reference_type
scores
0
value 0.00014
scoring_system epss
scoring_elements 0.02572
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-64505
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64505
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64505
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1121219
reference_id 1121219
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1121219
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2416905
reference_id 2416905
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2416905
6
reference_url https://github.com/pnggroup/libpng/commit/6a528eb5fd0dd7f6de1c39d30de0e41473431c37
reference_id 6a528eb5fd0dd7f6de1c39d30de0e41473431c37
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-25T18:55:44Z/
url https://github.com/pnggroup/libpng/commit/6a528eb5fd0dd7f6de1c39d30de0e41473431c37
7
reference_url https://github.com/pnggroup/libpng/pull/748
reference_id 748
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-25T18:55:44Z/
url https://github.com/pnggroup/libpng/pull/748
8
reference_url https://github.com/pnggroup/libpng/security/advisories/GHSA-4952-h5wq-4m42
reference_id GHSA-4952-h5wq-4m42
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-25T18:55:44Z/
url https://github.com/pnggroup/libpng/security/advisories/GHSA-4952-h5wq-4m42
9
reference_url https://security.gentoo.org/glsa/202511-06
reference_id GLSA-202511-06
reference_type
scores
url https://security.gentoo.org/glsa/202511-06
10
reference_url https://access.redhat.com/errata/RHSA-2026:6732
reference_id RHSA-2026:6732
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6732
11
reference_url https://usn.ubuntu.com/7924-1/
reference_id USN-7924-1
reference_type
scores
url https://usn.ubuntu.com/7924-1/
12
reference_url https://usn.ubuntu.com/8081-1/
reference_id USN-8081-1
reference_type
scores
url https://usn.ubuntu.com/8081-1/
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
6
url pkg:deb/debian/libpng1.6@1.6.51-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.51-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.51-1%3Fdistro=trixie
7
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2025-64505
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9jye-h6m1-uqhf
10
url VCID-abkq-xugq-2qbg
vulnerability_id VCID-abkq-xugq-2qbg
summary libpng: denial of service via png_push_read_chunk()
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0333.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0333.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-0333
reference_id
reference_type
scores
0
value 0.00764
scoring_system epss
scoring_elements 0.7372
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-0333
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0333
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0333
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1070985
reference_id 1070985
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1070985
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2014-0333
reference_id CVE-2014-0333
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2014-0333
5
reference_url https://security.gentoo.org/glsa/201408-06
reference_id GLSA-201408-06
reference_type
scores
url https://security.gentoo.org/glsa/201408-06
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.10-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.10-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.10-1%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2014-0333
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-abkq-xugq-2qbg
11
url VCID-c578-7yh5-7bap
vulnerability_id VCID-c578-7yh5-7bap
summary
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-13785.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-13785.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-13785
reference_id
reference_type
scores
0
value 0.03717
scoring_system epss
scoring_elements 0.88172
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-13785
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-13785
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-13785
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1599943
reference_id 1599943
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1599943
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=903430
reference_id 903430
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=903430
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-13785
reference_id CVE-2018-13785
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2018-13785
7
reference_url https://security.gentoo.org/glsa/201908-10
reference_id GLSA-201908-10
reference_type
scores
url https://security.gentoo.org/glsa/201908-10
8
reference_url https://access.redhat.com/errata/RHSA-2018:3000
reference_id RHSA-2018:3000
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:3000
9
reference_url https://access.redhat.com/errata/RHSA-2018:3001
reference_id RHSA-2018:3001
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:3001
10
reference_url https://access.redhat.com/errata/RHSA-2018:3002
reference_id RHSA-2018:3002
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:3002
11
reference_url https://access.redhat.com/errata/RHSA-2018:3003
reference_id RHSA-2018:3003
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:3003
12
reference_url https://access.redhat.com/errata/RHSA-2018:3007
reference_id RHSA-2018:3007
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:3007
13
reference_url https://access.redhat.com/errata/RHSA-2018:3008
reference_id RHSA-2018:3008
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:3008
14
reference_url https://access.redhat.com/errata/RHSA-2018:3533
reference_id RHSA-2018:3533
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:3533
15
reference_url https://access.redhat.com/errata/RHSA-2018:3534
reference_id RHSA-2018:3534
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:3534
16
reference_url https://access.redhat.com/errata/RHSA-2018:3671
reference_id RHSA-2018:3671
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:3671
17
reference_url https://access.redhat.com/errata/RHSA-2018:3672
reference_id RHSA-2018:3672
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:3672
18
reference_url https://access.redhat.com/errata/RHSA-2018:3779
reference_id RHSA-2018:3779
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:3779
19
reference_url https://access.redhat.com/errata/RHSA-2018:3852
reference_id RHSA-2018:3852
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:3852
20
reference_url https://usn.ubuntu.com/3712-1/
reference_id USN-3712-1
reference_type
scores
url https://usn.ubuntu.com/3712-1/
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.34-2?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.34-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.34-2%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2018-13785
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c578-7yh5-7bap
12
url VCID-dqtm-dr5e-5ufq
vulnerability_id VCID-dqtm-dr5e-5ufq
summary libpng: buffer overflow in png_combine_row
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9495.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9495.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-9495
reference_id
reference_type
scores
0
value 0.03487
scoring_system epss
scoring_elements 0.87782
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-9495
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9495
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9495
3
reference_url http://www.openwall.com/lists/oss-security/2015/01/10/1
reference_id 1
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:14:59Z/
url http://www.openwall.com/lists/oss-security/2015/01/10/1
4
reference_url http://www.securitytracker.com/id/1031444
reference_id 1031444
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:14:59Z/
url http://www.securitytracker.com/id/1031444
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1179186
reference_id 1179186
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1179186
6
reference_url http://www.openwall.com/lists/oss-security/2015/01/04/3
reference_id 3
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:14:59Z/
url http://www.openwall.com/lists/oss-security/2015/01/04/3
7
reference_url http://www.openwall.com/lists/oss-security/2015/01/10/3
reference_id 3
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:14:59Z/
url http://www.openwall.com/lists/oss-security/2015/01/10/3
8
reference_url http://sourceforge.net/p/png-mng/mailman/message/33172831/
reference_id 33172831
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:14:59Z/
url http://sourceforge.net/p/png-mng/mailman/message/33172831/
9
reference_url http://sourceforge.net/p/png-mng/mailman/message/33173461/
reference_id 33173461
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:14:59Z/
url http://sourceforge.net/p/png-mng/mailman/message/33173461/
10
reference_url http://secunia.com/advisories/62725
reference_id 62725
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:14:59Z/
url http://secunia.com/advisories/62725
11
reference_url http://www.securityfocus.com/bid/71820
reference_id 71820
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:14:59Z/
url http://www.securityfocus.com/bid/71820
12
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773823
reference_id 773823
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773823
13
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773824
reference_id 773824
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773824
14
reference_url https://nvd.nist.gov/vuln/detail/CVE-2014-9495
reference_id CVE-2014-9495
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2014-9495
15
reference_url https://security.gentoo.org/glsa/201502-10
reference_id GLSA-201502-10
reference_type
scores
url https://security.gentoo.org/glsa/201502-10
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.16-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.16-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.16-1%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2014-9495
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dqtm-dr5e-5ufq
13
url VCID-fgjw-tfum-rfgc
vulnerability_id VCID-fgjw-tfum-rfgc
summary libpng: libpng: Information disclosure and data corruption via use-after-free vulnerability
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34757.json
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34757.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-34757
reference_id
reference_type
scores
0
value 6e-05
scoring_system epss
scoring_elements 0.00477
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-34757
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34757
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34757
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1133051
reference_id 1133051
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1133051
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2456918
reference_id 2456918
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2456918
6
reference_url https://github.com/pnggroup/libpng/commit/398cbe3df03f4e11bb031e07f416dfdde3684e8a
reference_id 398cbe3df03f4e11bb031e07f416dfdde3684e8a
reference_type
scores
0
value 5.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-09T16:07:19Z/
url https://github.com/pnggroup/libpng/commit/398cbe3df03f4e11bb031e07f416dfdde3684e8a
7
reference_url https://github.com/pnggroup/libpng/commit/55d20aaa322c9274491cda82c5cd4f99b48c6bcc
reference_id 55d20aaa322c9274491cda82c5cd4f99b48c6bcc
reference_type
scores
0
value 5.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-09T16:07:19Z/
url https://github.com/pnggroup/libpng/commit/55d20aaa322c9274491cda82c5cd4f99b48c6bcc
8
reference_url https://github.com/pnggroup/libpng/issues/836
reference_id 836
reference_type
scores
0
value 5.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-09T16:07:19Z/
url https://github.com/pnggroup/libpng/issues/836
9
reference_url https://github.com/pnggroup/libpng/issues/837
reference_id 837
reference_type
scores
0
value 5.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-09T16:07:19Z/
url https://github.com/pnggroup/libpng/issues/837
10
reference_url https://github.com/pnggroup/libpng/security/advisories/GHSA-6fr7-g8h7-v645
reference_id GHSA-6fr7-g8h7-v645
reference_type
scores
0
value 5.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-09T16:07:19Z/
url https://github.com/pnggroup/libpng/security/advisories/GHSA-6fr7-g8h7-v645
11
reference_url https://access.redhat.com/errata/RHSA-2026:13719
reference_id RHSA-2026:13719
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13719
12
reference_url https://usn.ubuntu.com/8251-1/
reference_id USN-8251-1
reference_type
scores
url https://usn.ubuntu.com/8251-1/
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u4?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u4?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%252Bdeb11u4%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.57-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.57-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.57-1%3Fdistro=trixie
5
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2026-34757
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fgjw-tfum-rfgc
14
url VCID-g9jj-qcjq-h3d4
vulnerability_id VCID-g9jj-qcjq-h3d4
summary libpng: LIBPNG buffer overflow
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-64720.json
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-64720.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-64720
reference_id
reference_type
scores
0
value 0.00079
scoring_system epss
scoring_elements 0.23545
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-64720
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64720
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64720
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/pnggroup/libpng/commit/08da33b4c88cfcd36e5a706558a8d7e0e4773643
reference_id 08da33b4c88cfcd36e5a706558a8d7e0e4773643
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-25T19:28:16Z/
url https://github.com/pnggroup/libpng/commit/08da33b4c88cfcd36e5a706558a8d7e0e4773643
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1121217
reference_id 1121217
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1121217
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2416904
reference_id 2416904
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2416904
7
reference_url https://github.com/pnggroup/libpng/issues/686
reference_id 686
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-25T19:28:16Z/
url https://github.com/pnggroup/libpng/issues/686
8
reference_url https://github.com/pnggroup/libpng/pull/751
reference_id 751
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-25T19:28:16Z/
url https://github.com/pnggroup/libpng/pull/751
9
reference_url https://github.com/pnggroup/libpng/security/advisories/GHSA-hfc7-ph9c-wcww
reference_id GHSA-hfc7-ph9c-wcww
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-11-25T19:28:16Z/
url https://github.com/pnggroup/libpng/security/advisories/GHSA-hfc7-ph9c-wcww
10
reference_url https://security.gentoo.org/glsa/202511-06
reference_id GLSA-202511-06
reference_type
scores
url https://security.gentoo.org/glsa/202511-06
11
reference_url https://access.redhat.com/errata/RHSA-2026:0125
reference_id RHSA-2026:0125
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0125
12
reference_url https://access.redhat.com/errata/RHSA-2026:0210
reference_id RHSA-2026:0210
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0210
13
reference_url https://access.redhat.com/errata/RHSA-2026:0211
reference_id RHSA-2026:0211
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0211
14
reference_url https://access.redhat.com/errata/RHSA-2026:0212
reference_id RHSA-2026:0212
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0212
15
reference_url https://access.redhat.com/errata/RHSA-2026:0216
reference_id RHSA-2026:0216
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0216
16
reference_url https://access.redhat.com/errata/RHSA-2026:0234
reference_id RHSA-2026:0234
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0234
17
reference_url https://access.redhat.com/errata/RHSA-2026:0237
reference_id RHSA-2026:0237
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0237
18
reference_url https://access.redhat.com/errata/RHSA-2026:0238
reference_id RHSA-2026:0238
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0238
19
reference_url https://access.redhat.com/errata/RHSA-2026:0241
reference_id RHSA-2026:0241
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0241
20
reference_url https://access.redhat.com/errata/RHSA-2026:0251
reference_id RHSA-2026:0251
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0251
21
reference_url https://access.redhat.com/errata/RHSA-2026:0313
reference_id RHSA-2026:0313
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0313
22
reference_url https://access.redhat.com/errata/RHSA-2026:0321
reference_id RHSA-2026:0321
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0321
23
reference_url https://access.redhat.com/errata/RHSA-2026:0322
reference_id RHSA-2026:0322
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0322
24
reference_url https://access.redhat.com/errata/RHSA-2026:0323
reference_id RHSA-2026:0323
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0323
25
reference_url https://access.redhat.com/errata/RHSA-2026:0414
reference_id RHSA-2026:0414
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0414
26
reference_url https://access.redhat.com/errata/RHSA-2026:0847
reference_id RHSA-2026:0847
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0847
27
reference_url https://access.redhat.com/errata/RHSA-2026:0848
reference_id RHSA-2026:0848
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0848
28
reference_url https://access.redhat.com/errata/RHSA-2026:0849
reference_id RHSA-2026:0849
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0849
29
reference_url https://access.redhat.com/errata/RHSA-2026:0895
reference_id RHSA-2026:0895
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0895
30
reference_url https://access.redhat.com/errata/RHSA-2026:0897
reference_id RHSA-2026:0897
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0897
31
reference_url https://access.redhat.com/errata/RHSA-2026:0899
reference_id RHSA-2026:0899
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0899
32
reference_url https://access.redhat.com/errata/RHSA-2026:0901
reference_id RHSA-2026:0901
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0901
33
reference_url https://access.redhat.com/errata/RHSA-2026:0927
reference_id RHSA-2026:0927
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0927
34
reference_url https://access.redhat.com/errata/RHSA-2026:0928
reference_id RHSA-2026:0928
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0928
35
reference_url https://access.redhat.com/errata/RHSA-2026:0932
reference_id RHSA-2026:0932
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0932
36
reference_url https://access.redhat.com/errata/RHSA-2026:0933
reference_id RHSA-2026:0933
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0933
37
reference_url https://access.redhat.com/errata/RHSA-2026:6732
reference_id RHSA-2026:6732
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6732
38
reference_url https://usn.ubuntu.com/7924-1/
reference_id USN-7924-1
reference_type
scores
url https://usn.ubuntu.com/7924-1/
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
6
url pkg:deb/debian/libpng1.6@1.6.51-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.51-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.51-1%3Fdistro=trixie
7
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2025-64720
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g9jj-qcjq-h3d4
15
url VCID-hgnx-u76a-7kej
vulnerability_id VCID-hgnx-u76a-7kej
summary libpng: integer overflow leading to a heap-based buffer overflow in png_set_sPLT() and png_set_text_2()
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-7354.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-7354.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-7354
reference_id
reference_type
scores
0
value 0.00567
scoring_system epss
scoring_elements 0.68813
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-7354
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7354
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1086516
reference_id 1086516
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1086516
4
reference_url http://sourceforge.net/p/libpng/bugs/199/
reference_id 199
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-09T15:42:44Z/
url http://sourceforge.net/p/libpng/bugs/199/
5
reference_url http://www.securityfocus.com/bid/67344
reference_id 67344
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-09T15:42:44Z/
url http://www.securityfocus.com/bid/67344
6
reference_url http://seclists.org/oss-sec/2014/q2/83
reference_id 83
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-09T15:42:44Z/
url http://seclists.org/oss-sec/2014/q2/83
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2013-7354
reference_id CVE-2013-7354
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2013-7354
8
reference_url https://security.gentoo.org/glsa/201408-06
reference_id GLSA-201408-06
reference_type
scores
url https://security.gentoo.org/glsa/201408-06
9
reference_url http://lists.opensuse.org/opensuse-updates/2014-05/msg00015.html
reference_id msg00015.html
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-09T15:42:44Z/
url http://lists.opensuse.org/opensuse-updates/2014-05/msg00015.html
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.10-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.10-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.10-1%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2013-7354
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hgnx-u76a-7kej
16
url VCID-msp8-t4u3-4ubt
vulnerability_id VCID-msp8-t4u3-4ubt
summary libpng: libpng: Denial of service and information disclosure via heap buffer over-read in png_image_finish_read
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-22695.json
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-22695.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-22695
reference_id
reference_type
scores
0
value 0.00043
scoring_system epss
scoring_elements 0.13604
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-22695
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-22695
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-22695
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1125443
reference_id 1125443
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1125443
5
reference_url https://github.com/pnggroup/libpng/commit/218612ddd6b17944e21eda56caf8b4bf7779d1ea
reference_id 218612ddd6b17944e21eda56caf8b4bf7779d1ea
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-13T14:13:00Z/
url https://github.com/pnggroup/libpng/commit/218612ddd6b17944e21eda56caf8b4bf7779d1ea
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2428825
reference_id 2428825
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2428825
7
reference_url https://github.com/pnggroup/libpng/issues/778
reference_id 778
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-13T14:13:00Z/
url https://github.com/pnggroup/libpng/issues/778
8
reference_url https://github.com/pnggroup/libpng/commit/e4f7ad4ea2
reference_id e4f7ad4ea2
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-13T14:13:00Z/
url https://github.com/pnggroup/libpng/commit/e4f7ad4ea2
9
reference_url https://github.com/pnggroup/libpng/security/advisories/GHSA-mmq5-27w3-rxpp
reference_id GHSA-mmq5-27w3-rxpp
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-13T14:13:00Z/
url https://github.com/pnggroup/libpng/security/advisories/GHSA-mmq5-27w3-rxpp
10
reference_url https://access.redhat.com/errata/RHSA-2026:12274
reference_id RHSA-2026:12274
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:12274
11
reference_url https://access.redhat.com/errata/RHSA-2026:16174
reference_id RHSA-2026:16174
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:16174
12
reference_url https://access.redhat.com/errata/RHSA-2026:3405
reference_id RHSA-2026:3405
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3405
13
reference_url https://access.redhat.com/errata/RHSA-2026:3551
reference_id RHSA-2026:3551
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3551
14
reference_url https://access.redhat.com/errata/RHSA-2026:3573
reference_id RHSA-2026:3573
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3573
15
reference_url https://access.redhat.com/errata/RHSA-2026:3574
reference_id RHSA-2026:3574
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3574
16
reference_url https://access.redhat.com/errata/RHSA-2026:3575
reference_id RHSA-2026:3575
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3575
17
reference_url https://access.redhat.com/errata/RHSA-2026:3576
reference_id RHSA-2026:3576
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3576
18
reference_url https://access.redhat.com/errata/RHSA-2026:3577
reference_id RHSA-2026:3577
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3577
19
reference_url https://access.redhat.com/errata/RHSA-2026:4306
reference_id RHSA-2026:4306
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4306
20
reference_url https://access.redhat.com/errata/RHSA-2026:4501
reference_id RHSA-2026:4501
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4501
21
reference_url https://access.redhat.com/errata/RHSA-2026:4728
reference_id RHSA-2026:4728
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4728
22
reference_url https://access.redhat.com/errata/RHSA-2026:4729
reference_id RHSA-2026:4729
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4729
23
reference_url https://access.redhat.com/errata/RHSA-2026:4730
reference_id RHSA-2026:4730
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4730
24
reference_url https://access.redhat.com/errata/RHSA-2026:4731
reference_id RHSA-2026:4731
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4731
25
reference_url https://access.redhat.com/errata/RHSA-2026:4732
reference_id RHSA-2026:4732
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4732
26
reference_url https://access.redhat.com/errata/RHSA-2026:5606
reference_id RHSA-2026:5606
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5606
27
reference_url https://access.redhat.com/errata/RHSA-2026:6732
reference_id RHSA-2026:6732
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6732
28
reference_url https://access.redhat.com/errata/RHSA-2026:8746
reference_id RHSA-2026:8746
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8746
29
reference_url https://access.redhat.com/errata/RHSA-2026:8747
reference_id RHSA-2026:8747
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8747
30
reference_url https://access.redhat.com/errata/RHSA-2026:8748
reference_id RHSA-2026:8748
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8748
31
reference_url https://access.redhat.com/errata/RHSA-2026:9254
reference_id RHSA-2026:9254
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9254
32
reference_url https://access.redhat.com/errata/RHSA-2026:9255
reference_id RHSA-2026:9255
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9255
33
reference_url https://usn.ubuntu.com/7963-1/
reference_id USN-7963-1
reference_type
scores
url https://usn.ubuntu.com/7963-1/
34
reference_url https://usn.ubuntu.com/8035-1/
reference_id USN-8035-1
reference_type
scores
url https://usn.ubuntu.com/8035-1/
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%252Bdeb11u2%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u2?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u2%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u2?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u2%3Fdistro=trixie
5
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
6
url pkg:deb/debian/libpng1.6@1.6.54-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.54-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.54-1%3Fdistro=trixie
7
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2026-22695
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-msp8-t4u3-4ubt
17
url VCID-pd31-msjy-e3fe
vulnerability_id VCID-pd31-msjy-e3fe
summary libpng: libpng: Information disclosure and denial of service via integer truncation in simplified write API
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-22801.json
reference_id
reference_type
scores
0
value 6.6
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-22801.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-22801
reference_id
reference_type
scores
0
value 0.00023
scoring_system epss
scoring_elements 0.07003
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-22801
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-22801
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-22801
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1125444
reference_id 1125444
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1125444
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2428824
reference_id 2428824
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2428824
6
reference_url https://github.com/pnggroup/libpng/security/advisories/GHSA-vgjq-8cw5-ggw8
reference_id GHSA-vgjq-8cw5-ggw8
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-13T19:37:38Z/
url https://github.com/pnggroup/libpng/security/advisories/GHSA-vgjq-8cw5-ggw8
7
reference_url https://access.redhat.com/errata/RHSA-2026:12274
reference_id RHSA-2026:12274
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:12274
8
reference_url https://access.redhat.com/errata/RHSA-2026:16174
reference_id RHSA-2026:16174
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:16174
9
reference_url https://access.redhat.com/errata/RHSA-2026:3405
reference_id RHSA-2026:3405
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3405
10
reference_url https://access.redhat.com/errata/RHSA-2026:3551
reference_id RHSA-2026:3551
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3551
11
reference_url https://access.redhat.com/errata/RHSA-2026:3573
reference_id RHSA-2026:3573
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3573
12
reference_url https://access.redhat.com/errata/RHSA-2026:3574
reference_id RHSA-2026:3574
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3574
13
reference_url https://access.redhat.com/errata/RHSA-2026:3575
reference_id RHSA-2026:3575
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3575
14
reference_url https://access.redhat.com/errata/RHSA-2026:3576
reference_id RHSA-2026:3576
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3576
15
reference_url https://access.redhat.com/errata/RHSA-2026:3577
reference_id RHSA-2026:3577
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3577
16
reference_url https://access.redhat.com/errata/RHSA-2026:4306
reference_id RHSA-2026:4306
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4306
17
reference_url https://access.redhat.com/errata/RHSA-2026:4501
reference_id RHSA-2026:4501
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4501
18
reference_url https://access.redhat.com/errata/RHSA-2026:4728
reference_id RHSA-2026:4728
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4728
19
reference_url https://access.redhat.com/errata/RHSA-2026:4729
reference_id RHSA-2026:4729
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4729
20
reference_url https://access.redhat.com/errata/RHSA-2026:4730
reference_id RHSA-2026:4730
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4730
21
reference_url https://access.redhat.com/errata/RHSA-2026:4731
reference_id RHSA-2026:4731
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4731
22
reference_url https://access.redhat.com/errata/RHSA-2026:4732
reference_id RHSA-2026:4732
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4732
23
reference_url https://access.redhat.com/errata/RHSA-2026:5606
reference_id RHSA-2026:5606
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5606
24
reference_url https://access.redhat.com/errata/RHSA-2026:6732
reference_id RHSA-2026:6732
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6732
25
reference_url https://access.redhat.com/errata/RHSA-2026:8746
reference_id RHSA-2026:8746
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8746
26
reference_url https://access.redhat.com/errata/RHSA-2026:8747
reference_id RHSA-2026:8747
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8747
27
reference_url https://access.redhat.com/errata/RHSA-2026:8748
reference_id RHSA-2026:8748
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8748
28
reference_url https://access.redhat.com/errata/RHSA-2026:9254
reference_id RHSA-2026:9254
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9254
29
reference_url https://access.redhat.com/errata/RHSA-2026:9255
reference_id RHSA-2026:9255
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9255
30
reference_url https://usn.ubuntu.com/7963-1/
reference_id USN-7963-1
reference_type
scores
url https://usn.ubuntu.com/7963-1/
31
reference_url https://usn.ubuntu.com/8035-1/
reference_id USN-8035-1
reference_type
scores
url https://usn.ubuntu.com/8035-1/
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%252Bdeb11u2%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u2?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u2%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u2?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u2%3Fdistro=trixie
5
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
6
url pkg:deb/debian/libpng1.6@1.6.54-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.54-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.54-1%3Fdistro=trixie
7
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2026-22801
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pd31-msjy-e3fe
18
url VCID-teyp-1gtw-fffb
vulnerability_id VCID-teyp-1gtw-fffb
summary libpng: integer overflow leading to a heap-based buffer overflow in png_set_unknown_chunks()
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-7353.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-7353.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-7353
reference_id
reference_type
scores
0
value 0.00412
scoring_system epss
scoring_elements 0.61745
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-7353
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7353
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7353
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1086514
reference_id 1086514
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1086514
4
reference_url http://sourceforge.net/p/libpng/bugs/199/
reference_id 199
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-09T15:37:00Z/
url http://sourceforge.net/p/libpng/bugs/199/
5
reference_url http://www.securityfocus.com/bid/67345
reference_id 67345
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-09T15:37:00Z/
url http://www.securityfocus.com/bid/67345
6
reference_url http://seclists.org/oss-sec/2014/q2/83
reference_id 83
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-09T15:37:00Z/
url http://seclists.org/oss-sec/2014/q2/83
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2013-7353
reference_id CVE-2013-7353
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2013-7353
8
reference_url https://security.gentoo.org/glsa/201408-06
reference_id GLSA-201408-06
reference_type
scores
url https://security.gentoo.org/glsa/201408-06
9
reference_url http://lists.opensuse.org/opensuse-updates/2014-05/msg00015.html
reference_id msg00015.html
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-09T15:37:00Z/
url http://lists.opensuse.org/opensuse-updates/2014-05/msg00015.html
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.10-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.10-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.10-1%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2013-7353
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-teyp-1gtw-fffb
19
url VCID-u35c-rj5s-fqes
vulnerability_id VCID-u35c-rj5s-fqes
summary libpng: memory leak of png_info struct in pngcp.c
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6129.json
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6129.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-6129
reference_id
reference_type
scores
0
value 0.00284
scoring_system epss
scoring_elements 0.52025
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-6129
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6129
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6129
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1667127
reference_id 1667127
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1667127
4
reference_url https://github.com/glennrp/libpng/issues/269
reference_id 269
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:09:53Z/
url https://github.com/glennrp/libpng/issues/269
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.39-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-1%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2019-6129
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-u35c-rj5s-fqes
20
url VCID-vf8c-ynvr-qbfe
vulnerability_id VCID-vf8c-ynvr-qbfe
summary 
Out-of-bounds write in libpng
An issue has been found in third-party PNM decoding associated with libpng 1.6.35. It is a stack-based buffer overflow in the function get_token in pnm2png.c in pnm2png.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14550.json
reference_id
reference_type
scores
0
value 7.0
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14550.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-14550
reference_id
reference_type
scores
0
value 0.01831
scoring_system epss
scoring_elements 0.83229
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-14550
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14550
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14550
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/fouzhe/security/tree/master/libpng#stack-buffer-overflow-in-png2pnm-in-function-get_token
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/fouzhe/security/tree/master/libpng#stack-buffer-overflow-in-png2pnm-in-function-get_token
5
reference_url https://github.com/glennrp/libpng
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/glennrp/libpng
6
reference_url https://github.com/glennrp/libpng/issues/246
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/glennrp/libpng/issues/246
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-14550
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-14550
8
reference_url https://security.gentoo.org/glsa/201908-02
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://security.gentoo.org/glsa/201908-02
9
reference_url https://security.netapp.com/advisory/ntap-20221028-0001
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://security.netapp.com/advisory/ntap-20221028-0001
10
reference_url https://snyk.io/vuln/SNYK-UPSTREAM-LIBPNG-1043612
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://snyk.io/vuln/SNYK-UPSTREAM-LIBPNG-1043612
11
reference_url https://www.oracle.com/security-alerts/cpuApr2021.html
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.oracle.com/security-alerts/cpuApr2021.html
12
reference_url https://www.oracle.com/security-alerts/cpuoct2021.html
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.oracle.com/security-alerts/cpuoct2021.html
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1608800
reference_id 1608800
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1608800
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.37-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-1%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2018-14550, GHSA-qwwr-qc2p-6283
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vf8c-ynvr-qbfe
21
url VCID-w3t6-s6tj-vuds
vulnerability_id VCID-w3t6-s6tj-vuds
summary A use-after-free vulnerability was discovered in the png_image_free function in the libpng library. This could lead to denial of service or a potentially exploitable crash when a malformed image is processed.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7317.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-7317.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-7317
reference_id
reference_type
scores
0
value 0.00565
scoring_system epss
scoring_elements 0.68734
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-7317
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18511
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18511
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11691
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11691
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11692
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11692
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11693
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11693
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11698
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11698
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5798
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5798
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7317
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7317
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9797
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9797
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9800
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9800
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9816
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9816
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9817
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9817
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9819
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9819
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9820
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9820
15
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
16
reference_url http://www.securityfocus.com/bid/108098
reference_id 108098
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url http://www.securityfocus.com/bid/108098
17
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1672409
reference_id 1672409
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1672409
18
reference_url https://github.com/glennrp/libpng/issues/275
reference_id 275
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://github.com/glennrp/libpng/issues/275
19
reference_url https://seclists.org/bugtraq/2019/Apr/30
reference_id 30
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://seclists.org/bugtraq/2019/Apr/30
20
reference_url https://seclists.org/bugtraq/2019/Apr/36
reference_id 36
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://seclists.org/bugtraq/2019/Apr/36
21
reference_url https://usn.ubuntu.com/3962-1/
reference_id 3962-1
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://usn.ubuntu.com/3962-1/
22
reference_url https://usn.ubuntu.com/3991-1/
reference_id 3991-1
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://usn.ubuntu.com/3991-1/
23
reference_url https://usn.ubuntu.com/3997-1/
reference_id 3997-1
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://usn.ubuntu.com/3997-1/
24
reference_url https://usn.ubuntu.com/4080-1/
reference_id 4080-1
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://usn.ubuntu.com/4080-1/
25
reference_url https://usn.ubuntu.com/4083-1/
reference_id 4083-1
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://usn.ubuntu.com/4083-1/
26
reference_url https://seclists.org/bugtraq/2019/May/56
reference_id 56
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://seclists.org/bugtraq/2019/May/56
27
reference_url https://seclists.org/bugtraq/2019/May/59
reference_id 59
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://seclists.org/bugtraq/2019/May/59
28
reference_url https://seclists.org/bugtraq/2019/May/67
reference_id 67
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://seclists.org/bugtraq/2019/May/67
29
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=921355
reference_id 921355
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=921355
30
reference_url https://security.archlinux.org/ASA-201904-10
reference_id ASA-201904-10
reference_type
scores
url https://security.archlinux.org/ASA-201904-10
31
reference_url https://security.archlinux.org/ASA-201905-8
reference_id ASA-201905-8
reference_type
scores
url https://security.archlinux.org/ASA-201905-8
32
reference_url https://security.archlinux.org/ASA-201905-9
reference_id ASA-201905-9
reference_type
scores
url https://security.archlinux.org/ASA-201905-9
33
reference_url https://security.archlinux.org/AVG-868
reference_id AVG-868
reference_type
scores
0
value Low
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-868
34
reference_url https://security.archlinux.org/AVG-965
reference_id AVG-965
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-965
35
reference_url https://security.archlinux.org/AVG-966
reference_id AVG-966
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-966
36
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-7317
reference_id CVE-2019-7317
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2019-7317
37
reference_url https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=12803
reference_id detail?id=12803
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=12803
38
reference_url https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03977en_us
reference_id display?docLocale=en_US&docId=emr_na-hpesbst03977en_us
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03977en_us
39
reference_url https://www.debian.org/security/2019/dsa-4435
reference_id dsa-4435
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://www.debian.org/security/2019/dsa-4435
40
reference_url https://www.debian.org/security/2019/dsa-4448
reference_id dsa-4448
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://www.debian.org/security/2019/dsa-4448
41
reference_url https://www.debian.org/security/2019/dsa-4451
reference_id dsa-4451
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://www.debian.org/security/2019/dsa-4451
42
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-13
reference_id mfsa2019-13
reference_type
scores
0
value critical
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-13
43
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-14
reference_id mfsa2019-14
reference_type
scores
0
value critical
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-14
44
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2019-15
reference_id mfsa2019-15
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2019-15
45
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00002.html
reference_id msg00002.html
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00002.html
46
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00029.html
reference_id msg00029.html
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00029.html
47
reference_url https://lists.debian.org/debian-lts-announce/2019/05/msg00032.html
reference_id msg00032.html
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://lists.debian.org/debian-lts-announce/2019/05/msg00032.html
48
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00038.html
reference_id msg00038.html
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00038.html
49
reference_url https://lists.debian.org/debian-lts-announce/2019/05/msg00038.html
reference_id msg00038.html
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://lists.debian.org/debian-lts-announce/2019/05/msg00038.html
50
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00044.html
reference_id msg00044.html
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00044.html
51
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00084.html
reference_id msg00084.html
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00084.html
52
reference_url https://security.netapp.com/advisory/ntap-20190719-0005/
reference_id ntap-20190719-0005
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://security.netapp.com/advisory/ntap-20190719-0005/
53
reference_url https://access.redhat.com/errata/RHSA-2019:1265
reference_id RHSA-2019:1265
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://access.redhat.com/errata/RHSA-2019:1265
54
reference_url https://access.redhat.com/errata/RHSA-2019:1267
reference_id RHSA-2019:1267
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://access.redhat.com/errata/RHSA-2019:1267
55
reference_url https://access.redhat.com/errata/RHSA-2019:1269
reference_id RHSA-2019:1269
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://access.redhat.com/errata/RHSA-2019:1269
56
reference_url https://access.redhat.com/errata/RHSA-2019:1308
reference_id RHSA-2019:1308
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://access.redhat.com/errata/RHSA-2019:1308
57
reference_url https://access.redhat.com/errata/RHSA-2019:1309
reference_id RHSA-2019:1309
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://access.redhat.com/errata/RHSA-2019:1309
58
reference_url https://access.redhat.com/errata/RHSA-2019:1310
reference_id RHSA-2019:1310
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://access.redhat.com/errata/RHSA-2019:1310
59
reference_url https://access.redhat.com/errata/RHSA-2019:2494
reference_id RHSA-2019:2494
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://access.redhat.com/errata/RHSA-2019:2494
60
reference_url https://access.redhat.com/errata/RHSA-2019:2495
reference_id RHSA-2019:2495
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://access.redhat.com/errata/RHSA-2019:2495
61
reference_url https://access.redhat.com/errata/RHSA-2019:2585
reference_id RHSA-2019:2585
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://access.redhat.com/errata/RHSA-2019:2585
62
reference_url https://access.redhat.com/errata/RHSA-2019:2590
reference_id RHSA-2019:2590
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://access.redhat.com/errata/RHSA-2019:2590
63
reference_url https://access.redhat.com/errata/RHSA-2019:2592
reference_id RHSA-2019:2592
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://access.redhat.com/errata/RHSA-2019:2592
64
reference_url https://access.redhat.com/errata/RHSA-2019:2737
reference_id RHSA-2019:2737
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url https://access.redhat.com/errata/RHSA-2019:2737
65
reference_url http://packetstormsecurity.com/files/152561/Slackware-Security-Advisory-libpng-Updates.html
reference_id Slackware-Security-Advisory-libpng-Updates.html
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-28T18:24:04Z/
url http://packetstormsecurity.com/files/152561/Slackware-Security-Advisory-libpng-Updates.html
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.36-4?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.36-4?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.36-4%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2019-7317
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-w3t6-s6tj-vuds
22
url VCID-xw2w-9v3w-7ugy
vulnerability_id VCID-xw2w-9v3w-7ugy
summary libpng: LIBPNG has a heap buffer overflow in png_set_quantize
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-25646.json
reference_id
reference_type
scores
0
value 7.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-25646.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-25646
reference_id
reference_type
scores
0
value 0.00081
scoring_system epss
scoring_elements 0.23833
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-25646
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-25646
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-25646
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/pnggroup/libpng/commit/01d03b8453eb30ade759cd45c707e5a1c7277d88
reference_id 01d03b8453eb30ade759cd45c707e5a1c7277d88
reference_type
scores
0
value 8.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-11T15:31:50Z/
url https://github.com/pnggroup/libpng/commit/01d03b8453eb30ade759cd45c707e5a1c7277d88
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127566
reference_id 1127566
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127566
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2438542
reference_id 2438542
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2438542
7
reference_url https://github.com/pnggroup/libpng/security/advisories/GHSA-g8hp-mq4h-rqm3
reference_id GHSA-g8hp-mq4h-rqm3
reference_type
scores
0
value 8.3
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-11T15:31:50Z/
url https://github.com/pnggroup/libpng/security/advisories/GHSA-g8hp-mq4h-rqm3
8
reference_url https://access.redhat.com/errata/RHSA-2026:10097
reference_id RHSA-2026:10097
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:10097
9
reference_url https://access.redhat.com/errata/RHSA-2026:12274
reference_id RHSA-2026:12274
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:12274
10
reference_url https://access.redhat.com/errata/RHSA-2026:14773
reference_id RHSA-2026:14773
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:14773
11
reference_url https://access.redhat.com/errata/RHSA-2026:15087
reference_id RHSA-2026:15087
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:15087
12
reference_url https://access.redhat.com/errata/RHSA-2026:16174
reference_id RHSA-2026:16174
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:16174
13
reference_url https://access.redhat.com/errata/RHSA-2026:17596
reference_id RHSA-2026:17596
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:17596
14
reference_url https://access.redhat.com/errata/RHSA-2026:3031
reference_id RHSA-2026:3031
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3031
15
reference_url https://access.redhat.com/errata/RHSA-2026:3405
reference_id RHSA-2026:3405
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3405
16
reference_url https://access.redhat.com/errata/RHSA-2026:3551
reference_id RHSA-2026:3551
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3551
17
reference_url https://access.redhat.com/errata/RHSA-2026:3573
reference_id RHSA-2026:3573
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3573
18
reference_url https://access.redhat.com/errata/RHSA-2026:3574
reference_id RHSA-2026:3574
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3574
19
reference_url https://access.redhat.com/errata/RHSA-2026:3575
reference_id RHSA-2026:3575
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3575
20
reference_url https://access.redhat.com/errata/RHSA-2026:3576
reference_id RHSA-2026:3576
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3576
21
reference_url https://access.redhat.com/errata/RHSA-2026:3577
reference_id RHSA-2026:3577
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3577
22
reference_url https://access.redhat.com/errata/RHSA-2026:3968
reference_id RHSA-2026:3968
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3968
23
reference_url https://access.redhat.com/errata/RHSA-2026:3969
reference_id RHSA-2026:3969
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:3969
24
reference_url https://access.redhat.com/errata/RHSA-2026:4221
reference_id RHSA-2026:4221
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4221
25
reference_url https://access.redhat.com/errata/RHSA-2026:4222
reference_id RHSA-2026:4222
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4222
26
reference_url https://access.redhat.com/errata/RHSA-2026:4306
reference_id RHSA-2026:4306
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4306
27
reference_url https://access.redhat.com/errata/RHSA-2026:4501
reference_id RHSA-2026:4501
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4501
28
reference_url https://access.redhat.com/errata/RHSA-2026:4728
reference_id RHSA-2026:4728
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4728
29
reference_url https://access.redhat.com/errata/RHSA-2026:4729
reference_id RHSA-2026:4729
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4729
30
reference_url https://access.redhat.com/errata/RHSA-2026:4730
reference_id RHSA-2026:4730
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4730
31
reference_url https://access.redhat.com/errata/RHSA-2026:4731
reference_id RHSA-2026:4731
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4731
32
reference_url https://access.redhat.com/errata/RHSA-2026:4732
reference_id RHSA-2026:4732
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4732
33
reference_url https://access.redhat.com/errata/RHSA-2026:4756
reference_id RHSA-2026:4756
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:4756
34
reference_url https://access.redhat.com/errata/RHSA-2026:5606
reference_id RHSA-2026:5606
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:5606
35
reference_url https://access.redhat.com/errata/RHSA-2026:6439
reference_id RHSA-2026:6439
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6439
36
reference_url https://access.redhat.com/errata/RHSA-2026:6445
reference_id RHSA-2026:6445
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6445
37
reference_url https://access.redhat.com/errata/RHSA-2026:6466
reference_id RHSA-2026:6466
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6466
38
reference_url https://access.redhat.com/errata/RHSA-2026:6467
reference_id RHSA-2026:6467
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6467
39
reference_url https://access.redhat.com/errata/RHSA-2026:6468
reference_id RHSA-2026:6468
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6468
40
reference_url https://access.redhat.com/errata/RHSA-2026:6469
reference_id RHSA-2026:6469
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6469
41
reference_url https://access.redhat.com/errata/RHSA-2026:6553
reference_id RHSA-2026:6553
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6553
42
reference_url https://access.redhat.com/errata/RHSA-2026:6732
reference_id RHSA-2026:6732
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6732
43
reference_url https://access.redhat.com/errata/RHSA-2026:7032
reference_id RHSA-2026:7032
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7032
44
reference_url https://access.redhat.com/errata/RHSA-2026:7033
reference_id RHSA-2026:7033
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7033
45
reference_url https://access.redhat.com/errata/RHSA-2026:7034
reference_id RHSA-2026:7034
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7034
46
reference_url https://access.redhat.com/errata/RHSA-2026:7035
reference_id RHSA-2026:7035
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7035
47
reference_url https://access.redhat.com/errata/RHSA-2026:7036
reference_id RHSA-2026:7036
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7036
48
reference_url https://access.redhat.com/errata/RHSA-2026:7239
reference_id RHSA-2026:7239
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7239
49
reference_url https://access.redhat.com/errata/RHSA-2026:7243
reference_id RHSA-2026:7243
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7243
50
reference_url https://access.redhat.com/errata/RHSA-2026:8746
reference_id RHSA-2026:8746
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8746
51
reference_url https://access.redhat.com/errata/RHSA-2026:8747
reference_id RHSA-2026:8747
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8747
52
reference_url https://access.redhat.com/errata/RHSA-2026:8748
reference_id RHSA-2026:8748
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8748
53
reference_url https://access.redhat.com/errata/RHSA-2026:9254
reference_id RHSA-2026:9254
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9254
54
reference_url https://access.redhat.com/errata/RHSA-2026:9255
reference_id RHSA-2026:9255
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9255
55
reference_url https://usn.ubuntu.com/8035-1/
reference_id USN-8035-1
reference_type
scores
url https://usn.ubuntu.com/8035-1/
56
reference_url https://usn.ubuntu.com/8039-1/
reference_id USN-8039-1
reference_type
scores
url https://usn.ubuntu.com/8039-1/
57
reference_url https://usn.ubuntu.com/8081-1/
reference_id USN-8081-1
reference_type
scores
url https://usn.ubuntu.com/8081-1/
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%252Bdeb11u2%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u3%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u3%3Fdistro=trixie
5
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
6
url pkg:deb/debian/libpng1.6@1.6.55-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.55-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.55-1%3Fdistro=trixie
7
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2026-25646
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xw2w-9v3w-7ugy
23
url VCID-yusd-m9he-3kbj
vulnerability_id VCID-yusd-m9he-3kbj
summary libpng: libpng: Denial of Service via buffer overflow in png_create_read_struct() function
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-28164.json
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-28164.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-28164
reference_id
reference_type
scores
0
value 0.0003
scoring_system epss
scoring_elements 0.09065
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-28164
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-28164
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-28164
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2433398
reference_id 2433398
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2433398
5
reference_url https://gist.github.com/kittener/506516f8c22178005b4379c8b2a7de20
reference_id 506516f8c22178005b4379c8b2a7de20
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-28T16:35:03Z/
url https://gist.github.com/kittener/506516f8c22178005b4379c8b2a7de20
6
reference_url https://github.com/pnggroup/libpng/issues/655
reference_id 655
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-28T16:35:03Z/
url https://github.com/pnggroup/libpng/issues/655
7
reference_url https://access.redhat.com/errata/RHSA-2026:6732
reference_id RHSA-2026:6732
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6732
8
reference_url https://usn.ubuntu.com/7993-1/
reference_id USN-7993-1
reference_type
scores
url https://usn.ubuntu.com/7993-1/
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.47-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.47-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.47-1%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2025-28164
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yusd-m9he-3kbj
24
url VCID-zhj1-4sn9-qbbm
vulnerability_id VCID-zhj1-4sn9-qbbm
summary libpng: LIBPNG heap buffer overflow
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-65018.json
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-65018.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-65018
reference_id
reference_type
scores
0
value 0.00065
scoring_system epss
scoring_elements 0.20492
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-65018
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-65018
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-65018
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1121216
reference_id 1121216
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1121216
5
reference_url https://github.com/pnggroup/libpng/commit/16b5e3823918840aae65c0a6da57c78a5a496a4d
reference_id 16b5e3823918840aae65c0a6da57c78a5a496a4d
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-11-25T19:29:28Z/
url https://github.com/pnggroup/libpng/commit/16b5e3823918840aae65c0a6da57c78a5a496a4d
6
reference_url https://github.com/pnggroup/libpng/commit/218612ddd6b17944e21eda56caf8b4bf7779d1ea
reference_id 218612ddd6b17944e21eda56caf8b4bf7779d1ea
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-11-25T19:29:28Z/
url https://github.com/pnggroup/libpng/commit/218612ddd6b17944e21eda56caf8b4bf7779d1ea
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2416907
reference_id 2416907
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2416907
8
reference_url https://github.com/pnggroup/libpng/issues/755
reference_id 755
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-11-25T19:29:28Z/
url https://github.com/pnggroup/libpng/issues/755
9
reference_url https://github.com/pnggroup/libpng/pull/757
reference_id 757
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-11-25T19:29:28Z/
url https://github.com/pnggroup/libpng/pull/757
10
reference_url https://github.com/pnggroup/libpng/security/advisories/GHSA-7wv6-48j4-hj3g
reference_id GHSA-7wv6-48j4-hj3g
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-11-25T19:29:28Z/
url https://github.com/pnggroup/libpng/security/advisories/GHSA-7wv6-48j4-hj3g
11
reference_url https://security.gentoo.org/glsa/202511-06
reference_id GLSA-202511-06
reference_type
scores
url https://security.gentoo.org/glsa/202511-06
12
reference_url https://access.redhat.com/errata/RHSA-2026:0125
reference_id RHSA-2026:0125
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0125
13
reference_url https://access.redhat.com/errata/RHSA-2026:0210
reference_id RHSA-2026:0210
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0210
14
reference_url https://access.redhat.com/errata/RHSA-2026:0211
reference_id RHSA-2026:0211
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0211
15
reference_url https://access.redhat.com/errata/RHSA-2026:0212
reference_id RHSA-2026:0212
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0212
16
reference_url https://access.redhat.com/errata/RHSA-2026:0216
reference_id RHSA-2026:0216
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0216
17
reference_url https://access.redhat.com/errata/RHSA-2026:0234
reference_id RHSA-2026:0234
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0234
18
reference_url https://access.redhat.com/errata/RHSA-2026:0237
reference_id RHSA-2026:0237
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0237
19
reference_url https://access.redhat.com/errata/RHSA-2026:0238
reference_id RHSA-2026:0238
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0238
20
reference_url https://access.redhat.com/errata/RHSA-2026:0241
reference_id RHSA-2026:0241
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0241
21
reference_url https://access.redhat.com/errata/RHSA-2026:0313
reference_id RHSA-2026:0313
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0313
22
reference_url https://access.redhat.com/errata/RHSA-2026:0321
reference_id RHSA-2026:0321
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0321
23
reference_url https://access.redhat.com/errata/RHSA-2026:0322
reference_id RHSA-2026:0322
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0322
24
reference_url https://access.redhat.com/errata/RHSA-2026:0323
reference_id RHSA-2026:0323
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0323
25
reference_url https://access.redhat.com/errata/RHSA-2026:0414
reference_id RHSA-2026:0414
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0414
26
reference_url https://access.redhat.com/errata/RHSA-2026:0847
reference_id RHSA-2026:0847
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0847
27
reference_url https://access.redhat.com/errata/RHSA-2026:0848
reference_id RHSA-2026:0848
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0848
28
reference_url https://access.redhat.com/errata/RHSA-2026:0849
reference_id RHSA-2026:0849
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0849
29
reference_url https://access.redhat.com/errata/RHSA-2026:0895
reference_id RHSA-2026:0895
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0895
30
reference_url https://access.redhat.com/errata/RHSA-2026:0897
reference_id RHSA-2026:0897
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0897
31
reference_url https://access.redhat.com/errata/RHSA-2026:0899
reference_id RHSA-2026:0899
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0899
32
reference_url https://access.redhat.com/errata/RHSA-2026:0901
reference_id RHSA-2026:0901
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0901
33
reference_url https://access.redhat.com/errata/RHSA-2026:0927
reference_id RHSA-2026:0927
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0927
34
reference_url https://access.redhat.com/errata/RHSA-2026:0928
reference_id RHSA-2026:0928
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0928
35
reference_url https://access.redhat.com/errata/RHSA-2026:0932
reference_id RHSA-2026:0932
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0932
36
reference_url https://access.redhat.com/errata/RHSA-2026:0933
reference_id RHSA-2026:0933
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0933
37
reference_url https://access.redhat.com/errata/RHSA-2026:6732
reference_id RHSA-2026:6732
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6732
38
reference_url https://usn.ubuntu.com/7924-1/
reference_id USN-7924-1
reference_type
scores
url https://usn.ubuntu.com/7924-1/
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
6
url pkg:deb/debian/libpng1.6@1.6.51-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.51-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.51-1%3Fdistro=trixie
7
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2025-65018
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zhj1-4sn9-qbbm
25
url VCID-ztv5-xba4-c3cc
vulnerability_id VCID-ztv5-xba4-c3cc
summary libpng: libpng: Arbitrary code execution due to use-after-free vulnerability
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33416.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33416.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-33416
reference_id
reference_type
scores
0
value 0.00023
scoring_system epss
scoring_elements 0.06776
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-33416
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-33416
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-33416
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1132012
reference_id 1132012
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1132012
5
reference_url https://github.com/pnggroup/libpng/commit/23019269764e35ed8458e517f1897bd3c54820eb
reference_id 23019269764e35ed8458e517f1897bd3c54820eb
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-26T19:49:05Z/
url https://github.com/pnggroup/libpng/commit/23019269764e35ed8458e517f1897bd3c54820eb
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2451805
reference_id 2451805
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2451805
7
reference_url https://github.com/pnggroup/libpng/commit/7ea9eea884a2328cc7fdcb3c0c00246a50d90667
reference_id 7ea9eea884a2328cc7fdcb3c0c00246a50d90667
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-26T19:49:05Z/
url https://github.com/pnggroup/libpng/commit/7ea9eea884a2328cc7fdcb3c0c00246a50d90667
8
reference_url https://github.com/pnggroup/libpng/pull/824
reference_id 824
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-26T19:49:05Z/
url https://github.com/pnggroup/libpng/pull/824
9
reference_url https://github.com/pnggroup/libpng/commit/a3a21443ed12bfa1ef46fa0d4fb2b74a0fa34a25
reference_id a3a21443ed12bfa1ef46fa0d4fb2b74a0fa34a25
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-26T19:49:05Z/
url https://github.com/pnggroup/libpng/commit/a3a21443ed12bfa1ef46fa0d4fb2b74a0fa34a25
10
reference_url https://github.com/pnggroup/libpng/commit/c1b0318b393c90679e6fa5bc1d329fd5d5012ec1
reference_id c1b0318b393c90679e6fa5bc1d329fd5d5012ec1
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-26T19:49:05Z/
url https://github.com/pnggroup/libpng/commit/c1b0318b393c90679e6fa5bc1d329fd5d5012ec1
11
reference_url https://github.com/pnggroup/libpng/security/advisories/GHSA-m4pc-p4q3-4c7j
reference_id GHSA-m4pc-p4q3-4c7j
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-26T19:49:05Z/
url https://github.com/pnggroup/libpng/security/advisories/GHSA-m4pc-p4q3-4c7j
12
reference_url https://access.redhat.com/errata/RHSA-2026:11805
reference_id RHSA-2026:11805
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:11805
13
reference_url https://access.redhat.com/errata/RHSA-2026:11813
reference_id RHSA-2026:11813
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:11813
14
reference_url https://access.redhat.com/errata/RHSA-2026:12264
reference_id RHSA-2026:12264
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:12264
15
reference_url https://access.redhat.com/errata/RHSA-2026:13342
reference_id RHSA-2026:13342
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13342
16
reference_url https://access.redhat.com/errata/RHSA-2026:13412
reference_id RHSA-2026:13412
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13412
17
reference_url https://access.redhat.com/errata/RHSA-2026:13533
reference_id RHSA-2026:13533
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13533
18
reference_url https://access.redhat.com/errata/RHSA-2026:13582
reference_id RHSA-2026:13582
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13582
19
reference_url https://access.redhat.com/errata/RHSA-2026:13583
reference_id RHSA-2026:13583
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13583
20
reference_url https://access.redhat.com/errata/RHSA-2026:13596
reference_id RHSA-2026:13596
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13596
21
reference_url https://access.redhat.com/errata/RHSA-2026:13600
reference_id RHSA-2026:13600
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13600
22
reference_url https://access.redhat.com/errata/RHSA-2026:13665
reference_id RHSA-2026:13665
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13665
23
reference_url https://access.redhat.com/errata/RHSA-2026:13682
reference_id RHSA-2026:13682
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13682
24
reference_url https://access.redhat.com/errata/RHSA-2026:13683
reference_id RHSA-2026:13683
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13683
25
reference_url https://access.redhat.com/errata/RHSA-2026:13922
reference_id RHSA-2026:13922
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13922
26
reference_url https://access.redhat.com/errata/RHSA-2026:13977
reference_id RHSA-2026:13977
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:13977
27
reference_url https://access.redhat.com/errata/RHSA-2026:14223
reference_id RHSA-2026:14223
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:14223
28
reference_url https://access.redhat.com/errata/RHSA-2026:14303
reference_id RHSA-2026:14303
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:14303
29
reference_url https://access.redhat.com/errata/RHSA-2026:15889
reference_id RHSA-2026:15889
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:15889
30
reference_url https://access.redhat.com/errata/RHSA-2026:18028
reference_id RHSA-2026:18028
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:18028
31
reference_url https://access.redhat.com/errata/RHSA-2026:18064
reference_id RHSA-2026:18064
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:18064
32
reference_url https://access.redhat.com/errata/RHSA-2026:20548
reference_id RHSA-2026:20548
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:20548
33
reference_url https://access.redhat.com/errata/RHSA-2026:20549
reference_id RHSA-2026:20549
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:20549
34
reference_url https://access.redhat.com/errata/RHSA-2026:20550
reference_id RHSA-2026:20550
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:20550
35
reference_url https://access.redhat.com/errata/RHSA-2026:20551
reference_id RHSA-2026:20551
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:20551
36
reference_url https://access.redhat.com/errata/RHSA-2026:6732
reference_id RHSA-2026:6732
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6732
37
reference_url https://access.redhat.com/errata/RHSA-2026:7671
reference_id RHSA-2026:7671
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7671
38
reference_url https://access.redhat.com/errata/RHSA-2026:7672
reference_id RHSA-2026:7672
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7672
39
reference_url https://access.redhat.com/errata/RHSA-2026:8052
reference_id RHSA-2026:8052
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8052
40
reference_url https://access.redhat.com/errata/RHSA-2026:8459
reference_id RHSA-2026:8459
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8459
41
reference_url https://access.redhat.com/errata/RHSA-2026:9254
reference_id RHSA-2026:9254
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9254
42
reference_url https://access.redhat.com/errata/RHSA-2026:9255
reference_id RHSA-2026:9255
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9255
43
reference_url https://access.redhat.com/errata/RHSA-2026:9345
reference_id RHSA-2026:9345
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9345
44
reference_url https://access.redhat.com/errata/RHSA-2026:9638
reference_id RHSA-2026:9638
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9638
45
reference_url https://access.redhat.com/errata/RHSA-2026:9693
reference_id RHSA-2026:9693
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:9693
46
reference_url https://usn.ubuntu.com/8251-1/
reference_id USN-8251-1
reference_type
scores
url https://usn.ubuntu.com/8251-1/
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-5qkr-qykw-vqgt
1
vulnerability VCID-u35c-rj5s-fqes
2
vulnerability VCID-yusd-m9he-3kbj
3
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%252Bdeb11u3%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u4?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u4?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u4%3Fdistro=trixie
3
url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-yusd-m9he-3kbj
1
vulnerability VCID-zx6x-7hz7-zug3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie
4
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u4?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u4?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u4%3Fdistro=trixie
5
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
6
url pkg:deb/debian/libpng1.6@1.6.56-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.56-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.56-1%3Fdistro=trixie
7
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2026-33416
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ztv5-xba4-c3cc
26
url VCID-zx6x-7hz7-zug3
vulnerability_id VCID-zx6x-7hz7-zug3
summary libpng: libpng: Denial of Service via buffer overflow in pngimage utility
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-28162.json
reference_id
reference_type
scores
0
value 6.2
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-28162.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-28162
reference_id
reference_type
scores
0
value 0.0003
scoring_system epss
scoring_elements 0.09065
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-28162
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-28162
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-28162
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2433407
reference_id 2433407
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2433407
5
reference_url https://github.com/pnggroup/libpng/issues/656
reference_id 656
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-29T14:44:12Z/
url https://github.com/pnggroup/libpng/issues/656
6
reference_url https://gist.github.com/kittener/fbfdb9b5610c6b3db0d5dea045a07c60
reference_id fbfdb9b5610c6b3db0d5dea045a07c60
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-29T14:44:12Z/
url https://gist.github.com/kittener/fbfdb9b5610c6b3db0d5dea045a07c60
7
reference_url https://access.redhat.com/errata/RHSA-2026:6732
reference_id RHSA-2026:6732
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6732
8
reference_url https://usn.ubuntu.com/7993-1/
reference_id USN-7993-1
reference_type
scores
url https://usn.ubuntu.com/7993-1/
fixed_packages
0
url pkg:deb/debian/libpng1.6@1.6.47-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.47-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.47-1%3Fdistro=trixie
1
url pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie
2
url pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie
aliases CVE-2025-28162
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zx6x-7hz7-zug3
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie