CVE-2026-3713 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A flaw has been found in pnggroup libpng up to 1.6.55. Affected by this vulnerability is the function do_pnm2png of the file contrib/pngminus/pnm2png.c of the c…
Medium CVSS: 4.8

CVE-2026-3713

A flaw has been found in pnggroup libpng up to 1.6.55. Affected by this vulnerability is the function do_pnm2png of the file contrib/pngminus/pnm2png.c of the component pnm2png. This manipulation of the argument width/height causes heap-based buffer overflow. The attack is restricted to local execution. The exploit has been published and may be used. The project was informed of the problem early through an issue report but has not responded yet.
Vendor
-
Product
-
CWE
CWE-119
Yayın Tarihi
2026-03-08 06:16:11
Güncelleme
2026-03-09 13:35:07
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-119 MEDIUM 2026

Referanslar

https://github.com/biniamf/pocs/tree/main/pnm2png https://github.com/pnggroup/libpng/ https://github.com/pnggroup/libpng/issues/794 https://vuldb.com/?ctiid.349658 https://vuldb.com/?id.349658 https://vuldb.com/?submit.761996