Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-sb2a-mfgz-jfgt

Summary libpng: LIBPNG has a heap buffer overflow in png_set_quantize

Aliases

alias	CVE-2026-25646

Fixed_packages

url	pkg:apk/alpine/libpng@1.6.55-r0?arch=aarch64&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/libpng@1.6.55-r0?arch=aarch64&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.55-r0%3Farch=aarch64&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/libpng@1.6.55-r0?arch=armhf&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/libpng@1.6.55-r0?arch=armhf&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.55-r0%3Farch=armhf&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/libpng@1.6.55-r0?arch=armv7&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/libpng@1.6.55-r0?arch=armv7&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.55-r0%3Farch=armv7&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/libpng@1.6.55-r0?arch=loongarch64&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/libpng@1.6.55-r0?arch=loongarch64&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.55-r0%3Farch=loongarch64&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/libpng@1.6.55-r0?arch=ppc64le&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/libpng@1.6.55-r0?arch=ppc64le&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.55-r0%3Farch=ppc64le&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/libpng@1.6.55-r0?arch=riscv64&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/libpng@1.6.55-r0?arch=riscv64&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.55-r0%3Farch=riscv64&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/libpng@1.6.55-r0?arch=s390x&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/libpng@1.6.55-r0?arch=s390x&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.55-r0%3Farch=s390x&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/libpng@1.6.55-r0?arch=x86&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/libpng@1.6.55-r0?arch=x86&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.55-r0%3Farch=x86&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/libpng@1.6.55-r0?arch=x86_64&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/libpng@1.6.55-r0?arch=x86_64&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.55-r0%3Farch=x86_64&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/libpng@1.6.55-r0?arch=aarch64&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/libpng@1.6.55-r0?arch=aarch64&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.55-r0%3Farch=aarch64&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/libpng@1.6.55-r0?arch=armhf&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/libpng@1.6.55-r0?arch=armhf&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.55-r0%3Farch=armhf&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/libpng@1.6.55-r0?arch=armv7&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/libpng@1.6.55-r0?arch=armv7&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.55-r0%3Farch=armv7&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/libpng@1.6.55-r0?arch=ppc64le&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/libpng@1.6.55-r0?arch=ppc64le&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.55-r0%3Farch=ppc64le&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/libpng@1.6.55-r0?arch=riscv64&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/libpng@1.6.55-r0?arch=riscv64&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.55-r0%3Farch=riscv64&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/libpng@1.6.55-r0?arch=s390x&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/libpng@1.6.55-r0?arch=s390x&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.55-r0%3Farch=s390x&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/libpng@1.6.55-r0?arch=x86&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/libpng@1.6.55-r0?arch=x86&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.55-r0%3Farch=x86&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/libpng@1.6.55-r0?arch=x86_64&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/libpng@1.6.55-r0?arch=x86_64&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.55-r0%3Farch=x86_64&distroversion=v3.20&reponame=main

url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie

purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5q66-zeyz-rfdb

vulnerability	VCID-5rgq-xe5s-kkfc

vulnerability	VCID-gk3z-6dp9-73cd

vulnerability	VCID-gtdx-fb61-ykbv

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie

url	pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%252Bdeb11u2%3Fdistro=trixie

url	pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u3?distro=trixie
purl	pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u3%3Fdistro=trixie

url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5q66-zeyz-rfdb

vulnerability	VCID-gtdx-fb61-ykbv

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie

url	pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u3?distro=trixie
purl	pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u3%3Fdistro=trixie

url	pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl	pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie

url	pkg:deb/debian/libpng1.6@1.6.55-1?distro=trixie
purl	pkg:deb/debian/libpng1.6@1.6.55-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.55-1%3Fdistro=trixie

url	pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl	pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie

Affected_packages

url pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1?arch=el8

purl pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1?arch=el8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14x7-f34b-5uhr

vulnerability	VCID-247q-sfdz-kqf4

vulnerability	VCID-2whp-5xup-gkd4

vulnerability	VCID-54tg-29eb-bkds

vulnerability	VCID-5eh1-34nq-tff3

vulnerability	VCID-6w8a-h9b9-cbfe

vulnerability	VCID-ach1-1787-rudv

vulnerability	VCID-bhx8-hjgu-tfef

vulnerability	VCID-hvtk-57pq-jqcw

vulnerability	VCID-jax5-tqk4-vucd

vulnerability	VCID-qk2z-8x43-7khw

vulnerability	VCID-rh92-u493-w7fp

vulnerability	VCID-sb2a-mfgz-jfgt

vulnerability	VCID-v1ke-1b43-byhc

vulnerability	VCID-vcs8-ae2h-abgs

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1%3Farch=el8

url pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1?arch=el7_9

purl pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1?arch=el7_9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14x7-f34b-5uhr

vulnerability	VCID-247q-sfdz-kqf4

vulnerability	VCID-2whp-5xup-gkd4

vulnerability	VCID-54tg-29eb-bkds

vulnerability	VCID-5eh1-34nq-tff3

vulnerability	VCID-6w8a-h9b9-cbfe

vulnerability	VCID-ach1-1787-rudv

vulnerability	VCID-bhx8-hjgu-tfef

vulnerability	VCID-hvtk-57pq-jqcw

vulnerability	VCID-jax5-tqk4-vucd

vulnerability	VCID-qk2z-8x43-7khw

vulnerability	VCID-rh92-u493-w7fp

vulnerability	VCID-sb2a-mfgz-jfgt

vulnerability	VCID-v1ke-1b43-byhc

vulnerability	VCID-vcs8-ae2h-abgs

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1%3Farch=el7_9

url pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1?arch=el9

purl pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1?arch=el9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14x7-f34b-5uhr

vulnerability	VCID-247q-sfdz-kqf4

vulnerability	VCID-2whp-5xup-gkd4

vulnerability	VCID-54tg-29eb-bkds

vulnerability	VCID-5eh1-34nq-tff3

vulnerability	VCID-6w8a-h9b9-cbfe

vulnerability	VCID-ach1-1787-rudv

vulnerability	VCID-bhx8-hjgu-tfef

vulnerability	VCID-hvtk-57pq-jqcw

vulnerability	VCID-jax5-tqk4-vucd

vulnerability	VCID-qk2z-8x43-7khw

vulnerability	VCID-rh92-u493-w7fp

vulnerability	VCID-sb2a-mfgz-jfgt

vulnerability	VCID-v1ke-1b43-byhc

vulnerability	VCID-vcs8-ae2h-abgs

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1%3Farch=el9

url pkg:rpm/redhat/java-17-openjdk@1:17.0.19.0.10-1?arch=el8

purl pkg:rpm/redhat/java-17-openjdk@1:17.0.19.0.10-1?arch=el8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-247q-sfdz-kqf4

vulnerability	VCID-2whp-5xup-gkd4

vulnerability	VCID-54tg-29eb-bkds

vulnerability	VCID-6w8a-h9b9-cbfe

vulnerability	VCID-ach1-1787-rudv

vulnerability	VCID-bhx8-hjgu-tfef

vulnerability	VCID-ga3x-h3kv-37eu

vulnerability	VCID-hvtk-57pq-jqcw

vulnerability	VCID-qk2z-8x43-7khw

vulnerability	VCID-rh92-u493-w7fp

vulnerability	VCID-sb2a-mfgz-jfgt

vulnerability	VCID-vcs8-ae2h-abgs

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-17-openjdk@1:17.0.19.0.10-1%3Farch=el8

url pkg:rpm/redhat/java-17-openjdk@1:17.0.19.0.10-1?arch=el9

purl pkg:rpm/redhat/java-17-openjdk@1:17.0.19.0.10-1?arch=el9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-247q-sfdz-kqf4

vulnerability	VCID-2whp-5xup-gkd4

vulnerability	VCID-54tg-29eb-bkds

vulnerability	VCID-6w8a-h9b9-cbfe

vulnerability	VCID-ach1-1787-rudv

vulnerability	VCID-bhx8-hjgu-tfef

vulnerability	VCID-ga3x-h3kv-37eu

vulnerability	VCID-hvtk-57pq-jqcw

vulnerability	VCID-qk2z-8x43-7khw

vulnerability	VCID-rh92-u493-w7fp

vulnerability	VCID-sb2a-mfgz-jfgt

vulnerability	VCID-vcs8-ae2h-abgs

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-17-openjdk@1:17.0.19.0.10-1%3Farch=el9

url pkg:rpm/redhat/java-17-openjdk@1:17.0.19.0.10-2?arch=el9

purl pkg:rpm/redhat/java-17-openjdk@1:17.0.19.0.10-2?arch=el9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-247q-sfdz-kqf4

vulnerability	VCID-2whp-5xup-gkd4

vulnerability	VCID-54tg-29eb-bkds

vulnerability	VCID-6w8a-h9b9-cbfe

vulnerability	VCID-ach1-1787-rudv

vulnerability	VCID-bhx8-hjgu-tfef

vulnerability	VCID-ga3x-h3kv-37eu

vulnerability	VCID-hvtk-57pq-jqcw

vulnerability	VCID-qk2z-8x43-7khw

vulnerability	VCID-rh92-u493-w7fp

vulnerability	VCID-sb2a-mfgz-jfgt

vulnerability	VCID-vcs8-ae2h-abgs

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-17-openjdk@1:17.0.19.0.10-2%3Farch=el9

url pkg:rpm/redhat/libpng@2:1.5.13-8.el7_9?arch=2

purl pkg:rpm/redhat/libpng@2:1.5.13-8.el7_9?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sb2a-mfgz-jfgt

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.5.13-8.el7_9%3Farch=2

url pkg:rpm/redhat/libpng@2:1.6.34-8.el8_2?arch=2

purl pkg:rpm/redhat/libpng@2:1.6.34-8.el8_2?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5eh1-34nq-tff3

vulnerability	VCID-sb2a-mfgz-jfgt

vulnerability	VCID-v1ke-1b43-byhc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.34-8.el8_2%3Farch=2

url pkg:rpm/redhat/libpng@2:1.6.34-8.el8_4?arch=2

purl pkg:rpm/redhat/libpng@2:1.6.34-8.el8_4?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5eh1-34nq-tff3

vulnerability	VCID-sb2a-mfgz-jfgt

vulnerability	VCID-v1ke-1b43-byhc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.34-8.el8_4%3Farch=2

url pkg:rpm/redhat/libpng@2:1.6.34-8.el8_6?arch=2

purl pkg:rpm/redhat/libpng@2:1.6.34-8.el8_6?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5eh1-34nq-tff3

vulnerability	VCID-sb2a-mfgz-jfgt

vulnerability	VCID-v1ke-1b43-byhc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.34-8.el8_6%3Farch=2

url pkg:rpm/redhat/libpng@2:1.6.34-8.el8_8?arch=2

purl pkg:rpm/redhat/libpng@2:1.6.34-8.el8_8?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5eh1-34nq-tff3

vulnerability	VCID-sb2a-mfgz-jfgt

vulnerability	VCID-v1ke-1b43-byhc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.34-8.el8_8%3Farch=2

url pkg:rpm/redhat/libpng@2:1.6.34-10?arch=el8_10

purl pkg:rpm/redhat/libpng@2:1.6.34-10?arch=el8_10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5eh1-34nq-tff3

vulnerability	VCID-sb2a-mfgz-jfgt

vulnerability	VCID-v1ke-1b43-byhc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.34-10%3Farch=el8_10

url pkg:rpm/redhat/libpng@2:1.6.37-12.el9_0?arch=2

purl pkg:rpm/redhat/libpng@2:1.6.37-12.el9_0?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5eh1-34nq-tff3

vulnerability	VCID-sb2a-mfgz-jfgt

vulnerability	VCID-v1ke-1b43-byhc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.37-12.el9_0%3Farch=2

url pkg:rpm/redhat/libpng@2:1.6.37-12.el9_2?arch=2

purl pkg:rpm/redhat/libpng@2:1.6.37-12.el9_2?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5eh1-34nq-tff3

vulnerability	VCID-sb2a-mfgz-jfgt

vulnerability	VCID-v1ke-1b43-byhc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.37-12.el9_2%3Farch=2

url pkg:rpm/redhat/libpng@2:1.6.37-12.el9_4?arch=2

purl pkg:rpm/redhat/libpng@2:1.6.37-12.el9_4?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5eh1-34nq-tff3

vulnerability	VCID-sb2a-mfgz-jfgt

vulnerability	VCID-v1ke-1b43-byhc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.37-12.el9_4%3Farch=2

url pkg:rpm/redhat/libpng@2:1.6.37-12.el9_6?arch=2

purl pkg:rpm/redhat/libpng@2:1.6.37-12.el9_6?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5eh1-34nq-tff3

vulnerability	VCID-sb2a-mfgz-jfgt

vulnerability	VCID-v1ke-1b43-byhc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.37-12.el9_6%3Farch=2

url pkg:rpm/redhat/libpng@2:1.6.37-12.el9_7?arch=2

purl pkg:rpm/redhat/libpng@2:1.6.37-12.el9_7?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5eh1-34nq-tff3

vulnerability	VCID-sb2a-mfgz-jfgt

vulnerability	VCID-v1ke-1b43-byhc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.37-12.el9_7%3Farch=2

url pkg:rpm/redhat/libpng@2:1.6.40-8.el10_0?arch=2

purl pkg:rpm/redhat/libpng@2:1.6.40-8.el10_0?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5eh1-34nq-tff3

vulnerability	VCID-sb2a-mfgz-jfgt

vulnerability	VCID-v1ke-1b43-byhc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.40-8.el10_0%3Farch=2

url pkg:rpm/redhat/libpng@2:1.6.40-8.el10_1?arch=2

purl pkg:rpm/redhat/libpng@2:1.6.40-8.el10_1?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5eh1-34nq-tff3

vulnerability	VCID-sb2a-mfgz-jfgt

vulnerability	VCID-v1ke-1b43-byhc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.40-8.el10_1%3Farch=2

url pkg:rpm/redhat/libpng12@1.2.50-10.el7_9?arch=1

purl pkg:rpm/redhat/libpng12@1.2.50-10.el7_9?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sb2a-mfgz-jfgt

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng12@1.2.50-10.el7_9%3Farch=1

url pkg:rpm/redhat/libpng12@1.2.57-5.el8_2?arch=1

purl pkg:rpm/redhat/libpng12@1.2.57-5.el8_2?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sb2a-mfgz-jfgt

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng12@1.2.57-5.el8_2%3Farch=1

url pkg:rpm/redhat/libpng12@1.2.57-5.el8_4?arch=1

purl pkg:rpm/redhat/libpng12@1.2.57-5.el8_4?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sb2a-mfgz-jfgt

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng12@1.2.57-5.el8_4%3Farch=1

url pkg:rpm/redhat/libpng12@1.2.57-5.el8_6?arch=1

purl pkg:rpm/redhat/libpng12@1.2.57-5.el8_6?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sb2a-mfgz-jfgt

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng12@1.2.57-5.el8_6%3Farch=1

url pkg:rpm/redhat/libpng12@1.2.57-5.el8_8?arch=1

purl pkg:rpm/redhat/libpng12@1.2.57-5.el8_8?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sb2a-mfgz-jfgt

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng12@1.2.57-5.el8_8%3Farch=1

url pkg:rpm/redhat/libpng12@1.2.57-6?arch=el8_10

purl pkg:rpm/redhat/libpng12@1.2.57-6?arch=el8_10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sb2a-mfgz-jfgt

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng12@1.2.57-6%3Farch=el8_10

url pkg:rpm/redhat/libpng15@1.5.30-7.el8_2?arch=1

purl pkg:rpm/redhat/libpng15@1.5.30-7.el8_2?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sb2a-mfgz-jfgt

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng15@1.5.30-7.el8_2%3Farch=1

url pkg:rpm/redhat/libpng15@1.5.30-7.el8_4?arch=1

purl pkg:rpm/redhat/libpng15@1.5.30-7.el8_4?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sb2a-mfgz-jfgt

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng15@1.5.30-7.el8_4%3Farch=1

url pkg:rpm/redhat/libpng15@1.5.30-7.el8_6?arch=1

purl pkg:rpm/redhat/libpng15@1.5.30-7.el8_6?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sb2a-mfgz-jfgt

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng15@1.5.30-7.el8_6%3Farch=1

url pkg:rpm/redhat/libpng15@1.5.30-7.el8_8?arch=1

purl pkg:rpm/redhat/libpng15@1.5.30-7.el8_8?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sb2a-mfgz-jfgt

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng15@1.5.30-7.el8_8%3Farch=1

url pkg:rpm/redhat/libpng15@1.5.30-8?arch=el8_10

purl pkg:rpm/redhat/libpng15@1.5.30-8?arch=el8_10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sb2a-mfgz-jfgt

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng15@1.5.30-8%3Farch=el8_10

url pkg:rpm/redhat/libpng15@1.5.30-14.el9_0?arch=1

purl pkg:rpm/redhat/libpng15@1.5.30-14.el9_0?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sb2a-mfgz-jfgt

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng15@1.5.30-14.el9_0%3Farch=1

url pkg:rpm/redhat/libpng15@1.5.30-14.el9_2?arch=1

purl pkg:rpm/redhat/libpng15@1.5.30-14.el9_2?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sb2a-mfgz-jfgt

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng15@1.5.30-14.el9_2%3Farch=1

url pkg:rpm/redhat/libpng15@1.5.30-14.el9_4?arch=1

purl pkg:rpm/redhat/libpng15@1.5.30-14.el9_4?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sb2a-mfgz-jfgt

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng15@1.5.30-14.el9_4%3Farch=1

url pkg:rpm/redhat/libpng15@1.5.30-14.el9_6?arch=1

purl pkg:rpm/redhat/libpng15@1.5.30-14.el9_6?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sb2a-mfgz-jfgt

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng15@1.5.30-14.el9_6%3Farch=1

url pkg:rpm/redhat/libpng15@1.5.30-14.el9_7?arch=1

purl pkg:rpm/redhat/libpng15@1.5.30-14.el9_7?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sb2a-mfgz-jfgt

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng15@1.5.30-14.el9_7%3Farch=1

url pkg:rpm/redhat/libpng-main@1.6.56-1?arch=hum1

purl pkg:rpm/redhat/libpng-main@1.6.56-1?arch=hum1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14x7-f34b-5uhr

vulnerability	VCID-5eh1-34nq-tff3

vulnerability	VCID-5q66-zeyz-rfdb

vulnerability	VCID-8fz1-8ztk-6ffz

vulnerability	VCID-8gsp-rmdb-qfcn

vulnerability	VCID-9snm-6n9z-kqam

vulnerability	VCID-gtdx-fb61-ykbv

vulnerability	VCID-hftk-85zs-kfgj

vulnerability	VCID-jax5-tqk4-vucd

vulnerability	VCID-qk2z-8x43-7khw

vulnerability	VCID-sb2a-mfgz-jfgt

vulnerability	VCID-t5q5-b39g-t7hv

vulnerability	VCID-v1ke-1b43-byhc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng-main@1.6.56-1%3Farch=hum1

url pkg:rpm/redhat/mingw-libpng@1.6.34-2?arch=el8_10

purl pkg:rpm/redhat/mingw-libpng@1.6.34-2?arch=el8_10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5eh1-34nq-tff3

vulnerability	VCID-sb2a-mfgz-jfgt

vulnerability	VCID-v1ke-1b43-byhc

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/mingw-libpng@1.6.34-2%3Farch=el8_10

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-25646.json

reference_id

reference_type

scores

value	7.0
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-25646.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-25646

reference_id

reference_type

scores

value	0.00081
scoring_system	epss
scoring_elements	0.23913
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-25646

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-25646
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-25646

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/pnggroup/libpng/commit/01d03b8453eb30ade759cd45c707e5a1c7277d88

reference_id

01d03b8453eb30ade759cd45c707e5a1c7277d88

reference_type

scores

value	8.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-11T15:31:50Z/

url

https://github.com/pnggroup/libpng/commit/01d03b8453eb30ade759cd45c707e5a1c7277d88

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127566
reference_id	1127566
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1127566

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2438542
reference_id	2438542
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2438542

reference_url

https://github.com/pnggroup/libpng/security/advisories/GHSA-g8hp-mq4h-rqm3

reference_id

GHSA-g8hp-mq4h-rqm3

reference_type

scores

value	8.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-11T15:31:50Z/

url

https://github.com/pnggroup/libpng/security/advisories/GHSA-g8hp-mq4h-rqm3

reference_url	https://access.redhat.com/errata/RHSA-2026:10097
reference_id	RHSA-2026:10097
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:10097

reference_url	https://access.redhat.com/errata/RHSA-2026:12274
reference_id	RHSA-2026:12274
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:12274

reference_url	https://access.redhat.com/errata/RHSA-2026:14773
reference_id	RHSA-2026:14773
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:14773

reference_url	https://access.redhat.com/errata/RHSA-2026:15087
reference_id	RHSA-2026:15087
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:15087

reference_url	https://access.redhat.com/errata/RHSA-2026:16174
reference_id	RHSA-2026:16174
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:16174

reference_url	https://access.redhat.com/errata/RHSA-2026:17596
reference_id	RHSA-2026:17596
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:17596

reference_url	https://access.redhat.com/errata/RHSA-2026:3031
reference_id	RHSA-2026:3031
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3031

reference_url	https://access.redhat.com/errata/RHSA-2026:3405
reference_id	RHSA-2026:3405
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3405

reference_url	https://access.redhat.com/errata/RHSA-2026:3551
reference_id	RHSA-2026:3551
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3551

reference_url	https://access.redhat.com/errata/RHSA-2026:3573
reference_id	RHSA-2026:3573
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3573

reference_url	https://access.redhat.com/errata/RHSA-2026:3574
reference_id	RHSA-2026:3574
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3574

reference_url	https://access.redhat.com/errata/RHSA-2026:3575
reference_id	RHSA-2026:3575
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3575

reference_url	https://access.redhat.com/errata/RHSA-2026:3576
reference_id	RHSA-2026:3576
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3576

reference_url	https://access.redhat.com/errata/RHSA-2026:3577
reference_id	RHSA-2026:3577
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3577

reference_url	https://access.redhat.com/errata/RHSA-2026:3968
reference_id	RHSA-2026:3968
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3968

reference_url	https://access.redhat.com/errata/RHSA-2026:3969
reference_id	RHSA-2026:3969
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3969

reference_url	https://access.redhat.com/errata/RHSA-2026:4221
reference_id	RHSA-2026:4221
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4221

reference_url	https://access.redhat.com/errata/RHSA-2026:4222
reference_id	RHSA-2026:4222
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4222

reference_url	https://access.redhat.com/errata/RHSA-2026:4306
reference_id	RHSA-2026:4306
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4306

reference_url	https://access.redhat.com/errata/RHSA-2026:4501
reference_id	RHSA-2026:4501
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4501

reference_url	https://access.redhat.com/errata/RHSA-2026:4728
reference_id	RHSA-2026:4728
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4728

reference_url	https://access.redhat.com/errata/RHSA-2026:4729
reference_id	RHSA-2026:4729
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4729

reference_url	https://access.redhat.com/errata/RHSA-2026:4730
reference_id	RHSA-2026:4730
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4730

reference_url	https://access.redhat.com/errata/RHSA-2026:4731
reference_id	RHSA-2026:4731
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4731

reference_url	https://access.redhat.com/errata/RHSA-2026:4732
reference_id	RHSA-2026:4732
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4732

reference_url	https://access.redhat.com/errata/RHSA-2026:4756
reference_id	RHSA-2026:4756
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4756

reference_url	https://access.redhat.com/errata/RHSA-2026:5606
reference_id	RHSA-2026:5606
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5606

reference_url	https://access.redhat.com/errata/RHSA-2026:6439
reference_id	RHSA-2026:6439
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6439

reference_url	https://access.redhat.com/errata/RHSA-2026:6445
reference_id	RHSA-2026:6445
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6445

reference_url	https://access.redhat.com/errata/RHSA-2026:6466
reference_id	RHSA-2026:6466
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6466

reference_url	https://access.redhat.com/errata/RHSA-2026:6467
reference_id	RHSA-2026:6467
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6467

reference_url	https://access.redhat.com/errata/RHSA-2026:6468
reference_id	RHSA-2026:6468
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6468

reference_url	https://access.redhat.com/errata/RHSA-2026:6469
reference_id	RHSA-2026:6469
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6469

reference_url	https://access.redhat.com/errata/RHSA-2026:6553
reference_id	RHSA-2026:6553
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6553

reference_url	https://access.redhat.com/errata/RHSA-2026:6732
reference_id	RHSA-2026:6732
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6732

reference_url	https://access.redhat.com/errata/RHSA-2026:7032
reference_id	RHSA-2026:7032
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7032

reference_url	https://access.redhat.com/errata/RHSA-2026:7033
reference_id	RHSA-2026:7033
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7033

reference_url	https://access.redhat.com/errata/RHSA-2026:7034
reference_id	RHSA-2026:7034
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7034

reference_url	https://access.redhat.com/errata/RHSA-2026:7035
reference_id	RHSA-2026:7035
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7035

reference_url	https://access.redhat.com/errata/RHSA-2026:7036
reference_id	RHSA-2026:7036
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7036

reference_url	https://access.redhat.com/errata/RHSA-2026:7239
reference_id	RHSA-2026:7239
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7239

reference_url	https://access.redhat.com/errata/RHSA-2026:7243
reference_id	RHSA-2026:7243
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7243

reference_url	https://access.redhat.com/errata/RHSA-2026:8746
reference_id	RHSA-2026:8746
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8746

reference_url	https://access.redhat.com/errata/RHSA-2026:8747
reference_id	RHSA-2026:8747
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8747

reference_url	https://access.redhat.com/errata/RHSA-2026:8748
reference_id	RHSA-2026:8748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8748

reference_url	https://access.redhat.com/errata/RHSA-2026:9254
reference_id	RHSA-2026:9254
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:9254

reference_url	https://access.redhat.com/errata/RHSA-2026:9255
reference_id	RHSA-2026:9255
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:9255

reference_url	https://access.redhat.com/errata/RHSA-2026:9686
reference_id	RHSA-2026:9686
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:9686

reference_url	https://access.redhat.com/errata/RHSA-2026:9687
reference_id	RHSA-2026:9687
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:9687

reference_url	https://usn.ubuntu.com/8035-1/
reference_id	USN-8035-1
reference_type
scores
url	https://usn.ubuntu.com/8035-1/

reference_url	https://usn.ubuntu.com/8039-1/
reference_id	USN-8039-1
reference_type
scores
url	https://usn.ubuntu.com/8039-1/

reference_url	https://usn.ubuntu.com/8081-1/
reference_id	USN-8081-1
reference_type
scores
url	https://usn.ubuntu.com/8081-1/

Weaknesses

cwe_id	125
name	Out-of-bounds Read
description	The product reads data past the end, or before the beginning, of the intended buffer.

cwe_id	122
name	Heap-based Buffer Overflow
description	A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

cwe_id	126
name	Buffer Over-read
description	The product reads from a buffer using buffer access mechanisms such as indexes or pointers that reference memory locations after the targeted buffer.

Exploits

Severity_range_score 7.0 - 8.3

Exploitability 0.5

Weighted_severity 6.3

Risk_score 3.1

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sb2a-mfgz-jfgt

Vulnerability Instance