SB2026022353 - SUSE update for libpng16

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2026022353

SB2026022353 - SUSE update for libpng16

Published: February 23, 2026

Security Bulletin ID SB2026022353
Severity
High
Patch available
YES
Number of vulnerabilities 5
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

High 20% Medium 80%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 5 secuirty vulnerabilities.


1) Memory leak (CVE-ID: CVE-2025-28162)

The vulnerability allows a remote attacker to perform DoS attack on the target system.

The vulnerability exists due memory leak in png_malloc_base() function. A remote attacker can supply a specially crafted image file to the application and force the library to leak memory.


2) Memory leak (CVE-ID: CVE-2025-28164)

The vulnerability allows a remote attacker to perform DoS attack on the target system.

The vulnerability exists due memory leak in png_create_read_struct() function. A remote attacker can supply a specially crafted image file to the application and force the library to leak memory.


3) Out-of-bounds read (CVE-ID: CVE-2026-22695)

The vulnerability allows a remote attacker to gain access to potentially sensitive information or crash the application.

The vulnerability exists due to a boundary condition within the png_image_finish_read() function when reading 16-bit PNG images with 8-bit output format and non-minimal row stride. A remote attacker can supply a specially crafted PNG image file to the application, trigger an out-of-bounds read error and read contents of memory on the system or perform a denial of service attack.

Note, the vulnerability exists due to an incomplete fix for #VU118777 (CVE-2025-65018).


4) Out-of-bounds read (CVE-ID: CVE-2026-22801)

The vulnerability allows a remote attacker to gain access to potentially sensitive information or crash the application.

The vulnerability exists due to integer truncation within the png_write_image_16bit() and png_write_image_8bit() functions. A remote attacker can supply a specially crafted PNG file to the application, trigger an out-of-bounds read error and read contents of memory on the system or perform a denial of service attack.


5) Heap-based buffer overflow (CVE-ID: CVE-2026-25646)

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error within the png_set_quantize() API function. A remote attacker can pass specially crafted PNG image to the application, trigger a heap-based buffer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.


Remediation

Install update from vendor's website.

References