WID-SEC-W-2026-0870

Vulnerability from csaf_certbund - Published: 2026-03-25 23:00 - Updated: 2026-06-16 22:00
Summary
libpng: Mehrere Schwachstellen
Severity
Mittel
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Die libpng ist die offizielle Referenzbibliothek für die Darstellung und Manipulation von Bildern im Portable Network Graphics (PNG) Format.
Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in libpng ausnutzen, um beliebigen Programmcode auszuführen oder einen Denial of Service zu verursachen.
Betroffene Betriebssysteme: - Linux - Sonstiges - UNIX - Windows
Affected products
Product Identifier Version Remediation
Red Hat Enterprise Linux 9.6
Red Hat / Enterprise Linux
cpe:/o:redhat:enterprise_linux:9.6 9.6
Debian Linux
Debian
cpe:/o:debian:debian_linux:-
SUSE Linux
SUSE
cpe:/o:suse:suse_linux:-
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
cpe:/o:redhat:enterprise_linux:-
Ubuntu Linux
Ubuntu
cpe:/o:canonical:ubuntu_linux:-
SUSE openSUSE
SUSE
cpe:/o:suse:opensuse:-
Amazon Linux 2
Amazon
cpe:/o:amazon:linux_2:-
Oracle Linux
Oracle
cpe:/o:oracle:linux:-
Open Source libpng <1.6.56
Open Source / libpng
<1.6.56
RESF Rocky Linux
RESF
cpe:/o:resf:rocky_linux:-
Fedora Linux
Fedora
cpe:/o:fedoraproject:fedora:-
Affected products
Product Identifier Version Remediation
Red Hat Enterprise Linux 9.6
Red Hat / Enterprise Linux
cpe:/o:redhat:enterprise_linux:9.6 9.6
Debian Linux
Debian
cpe:/o:debian:debian_linux:-
SUSE Linux
SUSE
cpe:/o:suse:suse_linux:-
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
cpe:/o:redhat:enterprise_linux:-
Ubuntu Linux
Ubuntu
cpe:/o:canonical:ubuntu_linux:-
SUSE openSUSE
SUSE
cpe:/o:suse:opensuse:-
Amazon Linux 2
Amazon
cpe:/o:amazon:linux_2:-
Oracle Linux
Oracle
cpe:/o:oracle:linux:-
Open Source libpng <1.6.56
Open Source / libpng
<1.6.56
RESF Rocky Linux
RESF
cpe:/o:resf:rocky_linux:-
Fedora Linux
Fedora
cpe:/o:fedoraproject:fedora:-
References
URL Category
https://wid.cert-bund.de/.well-known/csaf/white/2… self
https://wid.cert-bund.de/portal/wid/securityadvis… self
https://seclists.org/oss-sec/2026/q1/387 external
https://github.com/pnggroup/libpng/security/advis… external
https://github.com/pnggroup/libpng/security/advis… external
https://lists.opensuse.org/archives/list/security… external
https://lists.debian.org/debian-security-announce… external
https://bodhi.fedoraproject.org/updates/FEDORA-20… external
https://lists.debian.org/debian-lts-announce/2026… external
https://bodhi.fedoraproject.org/updates/FEDORA-20… external
https://bodhi.fedoraproject.org/updates/FEDORA-20… external
https://lists.opensuse.org/archives/list/security… external
https://lists.suse.com/pipermail/sle-security-upd… external
https://access.redhat.com/errata/RHSA-2026:7672 external
https://access.redhat.com/errata/RHSA-2026:7671 external
https://lists.suse.com/pipermail/sle-security-upd… external
https://lists.suse.com/pipermail/sle-security-upd… external
https://alas.aws.amazon.com/AL2/ALAS2-2026-3243.html external
https://alas.aws.amazon.com/AL2/ALAS2-2026-3244.html external
https://access.redhat.com/errata/RHSA-2026:8052 external
https://lists.suse.com/pipermail/sle-security-upd… external
https://lists.suse.com/pipermail/sle-security-upd… external
https://lists.suse.com/pipermail/sle-security-upd… external
https://linux.oracle.com/errata/ELSA-2026-8459.html external
https://lists.suse.com/pipermail/sle-security-upd… external
https://lists.suse.com/pipermail/sle-security-upd… external
https://access.redhat.com/errata/RHSA-2026:9693 external
https://access.redhat.com/errata/RHSA-2026:9254 external
https://access.redhat.com/errata/RHSA-2026:9255 external
https://access.redhat.com/errata/RHSA-2026:11813 external
https://access.redhat.com/errata/RHSA-2026:11805 external
https://lists.opensuse.org/archives/list/security… external
https://access.redhat.com/errata/RHSA-2026:13342 external
https://access.redhat.com/errata/RHSA-2026:12264 external
https://access.redhat.com/errata/RHSA-2026:13533 external
https://access.redhat.com/errata/RHSA-2026:13600 external
https://access.redhat.com/errata/RHSA-2026:13582 external
https://access.redhat.com/errata/RHSA-2026:13412 external
https://access.redhat.com/errata/RHSA-2026:13596 external
https://access.redhat.com/errata/RHSA-2026:13665 external
https://access.redhat.com/errata/RHSA-2026:13683 external
https://access.redhat.com/errata/RHSA-2026:14303 external
https://access.redhat.com/errata/RHSA-2026:13977 external
https://lists.suse.com/pipermail/sle-security-upd… external
https://access.redhat.com/errata/RHSA-2026:14223 external
https://lists.suse.com/pipermail/sle-security-upd… external
https://ubuntu.com/security/notices/USN-8251-1 external
https://access.redhat.com/errata/RHSA-2026:14791 external
https://access.redhat.com/errata/RHSA-2026:14790 external
https://linux.oracle.com/errata/ELSA-2026-14791.html external
https://linux.oracle.com/errata/ELSA-2026-14790.html external
https://access.redhat.com/errata/RHSA-2026:15889 external
https://errata.build.resf.org/RLSA-2026:14791 external
https://errata.build.resf.org/RLSA-2026:14790 external
https://access.redhat.com/errata/RHSA-2026:17603 external
https://access.redhat.com/errata/RHSA-2026:17685 external
https://access.redhat.com/errata/RHSA-2026:17524 external
https://access.redhat.com/errata/RHSA-2026:17567 external
https://access.redhat.com/errata/RHSA-2026:17642 external
https://access.redhat.com/errata/RHSA-2026:18028 external
https://linux.oracle.com/errata/ELSA-2026-18064.html external
https://linux.oracle.com/errata/ELSA-2026-18028.html external
https://access.redhat.com/errata/RHSA-2026:18064 external
https://errata.build.resf.org/RLSA-2026:18028 external
https://errata.build.resf.org/RLSA-2026:18064 external
https://bodhi.fedoraproject.org/updates/FEDORA-20… external
https://bodhi.fedoraproject.org/updates/FEDORA-20… external
https://bodhi.fedoraproject.org/updates/FEDORA-20… external
https://access.redhat.com/errata/RHSA-2026:20551 external
https://access.redhat.com/errata/RHSA-2026:20550 external
https://access.redhat.com/errata/RHSA-2026:20549 external
https://access.redhat.com/errata/RHSA-2026:20548 external
https://access.redhat.com/errata/RHSA-2026:25096 external
https://linux.oracle.com/errata/ELSA-2026-26347.html external
https://errata.build.resf.org/RLSA-2026:26348 external
https://linux.oracle.com/errata/ELSA-2026-26348.html external
https://access.redhat.com/errata/RHSA-2026:26347 external
https://errata.build.resf.org/RLSA-2026:26347 external

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Die libpng ist die offizielle Referenzbibliothek f\u00fcr die Darstellung und Manipulation von Bildern im Portable Network Graphics (PNG) Format.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in libpng ausnutzen, um beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service zu verursachen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2026-0870 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0870.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2026-0870 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0870"
      },
      {
        "category": "external",
        "summary": "OSS Security Mailing List vom 2026-03-25",
        "url": "https://seclists.org/oss-sec/2026/q1/387"
      },
      {
        "category": "external",
        "summary": "libpng GitHub vom 2026-03-25",
        "url": "https://github.com/pnggroup/libpng/security/advisories/GHSA-m4pc-p4q3-4c7j"
      },
      {
        "category": "external",
        "summary": "libpng GitHub vom 2026-03-25",
        "url": "https://github.com/pnggroup/libpng/security/advisories/GHSA-WJR5-C57X-95M2"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2026:10451-1 vom 2026-03-31",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/BW7FXXY3UCNLQ5X4KG3NSGMFBE7B3G2R/"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-6189 vom 2026-03-31",
        "url": "https://lists.debian.org/debian-security-announce/2026/msg00098.html"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2026-C6C617FE35 vom 2026-04-07",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-c6c617fe35"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4521 vom 2026-04-02",
        "url": "https://lists.debian.org/debian-lts-announce/2026/04/msg00001.html"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2026-BA18A54554 vom 2026-04-07",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-ba18a54554"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2026-67C20BFB74 vom 2026-04-07",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-67c20bfb74"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2026:20466-1 vom 2026-04-09",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/3PYSKYKCP5UVHUBF6G52O6GPIKOALANG/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21000-1 vom 2026-04-13",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025224.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:7672 vom 2026-04-13",
        "url": "https://access.redhat.com/errata/RHSA-2026:7672"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:7671 vom 2026-04-13",
        "url": "https://access.redhat.com/errata/RHSA-2026:7671"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21067-1 vom 2026-04-13",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025274.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21038-1 vom 2026-04-13",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025302.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2-2026-3243 vom 2026-04-14",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2-2026-3243.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2-2026-3244 vom 2026-04-14",
        "url": "https://alas.aws.amazon.com/AL2/ALAS2-2026-3244.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:8052 vom 2026-04-14",
        "url": "https://access.redhat.com/errata/RHSA-2026:8052"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:1323-1 vom 2026-04-14",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025333.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:1311-1 vom 2026-04-14",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025326.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:1368-1 vom 2026-04-15",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025352.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2026-8459 vom 2026-04-17",
        "url": "https://linux.oracle.com/errata/ELSA-2026-8459.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:1500-1 vom 2026-04-21",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025479.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21138-1 vom 2026-04-21",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025519.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:9693 vom 2026-04-22",
        "url": "https://access.redhat.com/errata/RHSA-2026:9693"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:9254 vom 2026-04-22",
        "url": "https://access.redhat.com/errata/RHSA-2026:9254"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:9255 vom 2026-04-22",
        "url": "https://access.redhat.com/errata/RHSA-2026:9255"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:11813 vom 2026-04-29",
        "url": "https://access.redhat.com/errata/RHSA-2026:11813"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:11805 vom 2026-04-29",
        "url": "https://access.redhat.com/errata/RHSA-2026:11805"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2026:10640-1 vom 2026-04-30",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/XIE7LM4AK2R45TAYTB7NKRDWE4D3RHTT/"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:13342 vom 2026-05-04",
        "url": "https://access.redhat.com/errata/RHSA-2026:13342"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:12264 vom 2026-04-30",
        "url": "https://access.redhat.com/errata/RHSA-2026:12264"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:13533 vom 2026-05-04",
        "url": "https://access.redhat.com/errata/RHSA-2026:13533"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:13600 vom 2026-05-05",
        "url": "https://access.redhat.com/errata/RHSA-2026:13600"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:13582 vom 2026-05-05",
        "url": "https://access.redhat.com/errata/RHSA-2026:13582"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:13412 vom 2026-05-04",
        "url": "https://access.redhat.com/errata/RHSA-2026:13412"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:13596 vom 2026-05-05",
        "url": "https://access.redhat.com/errata/RHSA-2026:13596"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:13665 vom 2026-05-05",
        "url": "https://access.redhat.com/errata/RHSA-2026:13665"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:13683 vom 2026-05-05",
        "url": "https://access.redhat.com/errata/RHSA-2026:13683"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:14303 vom 2026-05-06",
        "url": "https://access.redhat.com/errata/RHSA-2026:14303"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:13977 vom 2026-05-06",
        "url": "https://access.redhat.com/errata/RHSA-2026:13977"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:1716-1 vom 2026-05-06",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/025887.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:14223 vom 2026-05-06",
        "url": "https://access.redhat.com/errata/RHSA-2026:14223"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:1702-1 vom 2026-05-06",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/025847.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-8251-1 vom 2026-05-07",
        "url": "https://ubuntu.com/security/notices/USN-8251-1"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:14791 vom 2026-05-08",
        "url": "https://access.redhat.com/errata/RHSA-2026:14791"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:14790 vom 2026-05-07",
        "url": "https://access.redhat.com/errata/RHSA-2026:14790"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2026-14791 vom 2026-05-08",
        "url": "https://linux.oracle.com/errata/ELSA-2026-14791.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2026-14790 vom 2026-05-07",
        "url": "https://linux.oracle.com/errata/ELSA-2026-14790.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:15889 vom 2026-05-11",
        "url": "https://access.redhat.com/errata/RHSA-2026:15889"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2026:14791 vom 2026-05-11",
        "url": "https://errata.build.resf.org/RLSA-2026:14791"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2026:14790 vom 2026-05-11",
        "url": "https://errata.build.resf.org/RLSA-2026:14790"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:17603 vom 2026-05-14",
        "url": "https://access.redhat.com/errata/RHSA-2026:17603"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:17685 vom 2026-05-14",
        "url": "https://access.redhat.com/errata/RHSA-2026:17685"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:17524 vom 2026-05-14",
        "url": "https://access.redhat.com/errata/RHSA-2026:17524"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:17567 vom 2026-05-14",
        "url": "https://access.redhat.com/errata/RHSA-2026:17567"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:17642 vom 2026-05-14",
        "url": "https://access.redhat.com/errata/RHSA-2026:17642"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:18028 vom 2026-05-18",
        "url": "https://access.redhat.com/errata/RHSA-2026:18028"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2026-18064 vom 2026-05-18",
        "url": "https://linux.oracle.com/errata/ELSA-2026-18064.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2026-18028 vom 2026-05-18",
        "url": "https://linux.oracle.com/errata/ELSA-2026-18028.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:18064 vom 2026-05-18",
        "url": "https://access.redhat.com/errata/RHSA-2026:18064"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2026:18028 vom 2026-05-19",
        "url": "https://errata.build.resf.org/RLSA-2026:18028"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2026:18064 vom 2026-05-19",
        "url": "https://errata.build.resf.org/RLSA-2026:18064"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2026-9A678A08C8 vom 2026-05-26",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-9a678a08c8"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2026-A109A9AC2C vom 2026-05-26",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-a109a9ac2c"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2026-67C1138ED2 vom 2026-05-26",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-67c1138ed2"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:20551 vom 2026-05-26",
        "url": "https://access.redhat.com/errata/RHSA-2026:20551"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:20550 vom 2026-05-26",
        "url": "https://access.redhat.com/errata/RHSA-2026:20550"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:20549 vom 2026-05-26",
        "url": "https://access.redhat.com/errata/RHSA-2026:20549"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:20548 vom 2026-05-26",
        "url": "https://access.redhat.com/errata/RHSA-2026:20548"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:25096 vom 2026-06-10",
        "url": "https://access.redhat.com/errata/RHSA-2026:25096"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2026-26347 vom 2026-06-17",
        "url": "https://linux.oracle.com/errata/ELSA-2026-26347.html"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2026:26348 vom 2026-06-17",
        "url": "https://errata.build.resf.org/RLSA-2026:26348"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2026-26348 vom 2026-06-17",
        "url": "https://linux.oracle.com/errata/ELSA-2026-26348.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:26347 vom 2026-06-16",
        "url": "https://access.redhat.com/errata/RHSA-2026:26347"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2026:26347 vom 2026-06-17",
        "url": "https://errata.build.resf.org/RLSA-2026:26347"
      }
    ],
    "source_lang": "en-US",
    "title": "libpng: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2026-06-16T22:00:00.000+00:00",
      "generator": {
        "date": "2026-06-17T09:00:06.565+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.6.0"
        }
      },
      "id": "WID-SEC-W-2026-0870",
      "initial_release_date": "2026-03-25T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2026-03-25T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2026-03-26T23:00:00.000+00:00",
          "number": "2",
          "summary": "Referenz(en) aufgenommen: EUVD-2026-16258, EUVD-2026-16269"
        },
        {
          "date": "2026-03-31T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von openSUSE und Debian aufgenommen"
        },
        {
          "date": "2026-04-06T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Fedora und Debian aufgenommen"
        },
        {
          "date": "2026-04-09T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von openSUSE aufgenommen"
        },
        {
          "date": "2026-04-12T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von SUSE und Red Hat aufgenommen"
        },
        {
          "date": "2026-04-13T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von SUSE und Amazon aufgenommen"
        },
        {
          "date": "2026-04-14T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-04-15T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-04-16T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2026-04-20T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-04-21T22:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-04-22T22:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-04-29T22:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-05-03T22:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von openSUSE und Red Hat aufgenommen"
        },
        {
          "date": "2026-05-04T22:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-05-06T22:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von Red Hat und SUSE aufgenommen"
        },
        {
          "date": "2026-05-07T22:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von Ubuntu, Red Hat und Oracle Linux aufgenommen"
        },
        {
          "date": "2026-05-10T22:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-05-11T22:00:00.000+00:00",
          "number": "20",
          "summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
        },
        {
          "date": "2026-05-14T22:00:00.000+00:00",
          "number": "21",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-05-17T22:00:00.000+00:00",
          "number": "22",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-05-18T22:00:00.000+00:00",
          "number": "23",
          "summary": "Neue Updates von Oracle Linux und Red Hat aufgenommen"
        },
        {
          "date": "2026-05-19T22:00:00.000+00:00",
          "number": "24",
          "summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
        },
        {
          "date": "2026-05-25T22:00:00.000+00:00",
          "number": "25",
          "summary": "Neue Updates von Fedora und Red Hat aufgenommen"
        },
        {
          "date": "2026-06-10T22:00:00.000+00:00",
          "number": "26",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-06-16T22:00:00.000+00:00",
          "number": "27",
          "summary": "Neue Updates von Oracle Linux, Rocky Enterprise Software Foundation und Red Hat aufgenommen"
        }
      ],
      "status": "final",
      "version": "27"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Fedora Linux",
            "product": {
              "name": "Fedora Linux",
              "product_id": "74185",
              "product_identification_helper": {
                "cpe": "cpe:/o:fedoraproject:fedora:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Fedora"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c1.6.56",
                "product": {
                  "name": "Open Source libpng \u003c1.6.56",
                  "product_id": "T052179"
                }
              },
              {
                "category": "product_version",
                "name": "1.6.56",
                "product": {
                  "name": "Open Source libpng 1.6.56",
                  "product_id": "T052179-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:libpng:libpng:1.6.56"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "libpng"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "RESF Rocky Linux",
            "product": {
              "name": "RESF Rocky Linux",
              "product_id": "T032255",
              "product_identification_helper": {
                "cpe": "cpe:/o:resf:rocky_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "RESF"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux",
                "product": {
                  "name": "Red Hat Enterprise Linux",
                  "product_id": "67646",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:-"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9.6",
                "product": {
                  "name": "Red Hat Enterprise Linux 9.6",
                  "product_id": "T054076",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:9.6"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Enterprise Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "SUSE openSUSE",
            "product": {
              "name": "SUSE openSUSE",
              "product_id": "T027843",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:opensuse:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-33416",
      "product_status": {
        "known_affected": [
          "T054076",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914",
          "T052179",
          "T032255",
          "74185"
        ]
      },
      "release_date": "2026-03-25T23:00:00.000+00:00",
      "title": "CVE-2026-33416"
    },
    {
      "cve": "CVE-2026-33636",
      "product_status": {
        "known_affected": [
          "T054076",
          "2951",
          "T002207",
          "67646",
          "T000126",
          "T027843",
          "398363",
          "T004914",
          "T052179",
          "T032255",
          "74185"
        ]
      },
      "release_date": "2026-03-25T23:00:00.000+00:00",
      "title": "CVE-2026-33636"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Loading…

Detection rules are retrieved from Rulezet.

Loading…

Loading…