Bug 2451819 (CVE-2026-33636)
| Summary: | CVE-2026-33636 libpng: libpng: Information disclosure and denial of service via out-of-bounds read/write in Neon palette expansion | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | OSIDB Bzimport <bzimport> |
| Component: | vulnerability | Assignee: | Product Security DevOps Team <prodsec-dev> |
| Status: | NEW --- | QA Contact: | |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | unspecified | CC: | ahughes, caswilli, fferrari, gotiwari, jgrulich, jhorak, kaycoth, khosford, kshier, mtorre, mvyas, pjindal, stcannon, teagle, tfitzsim, tpopela, yguenane |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | --- | |
| Doc Text: |
A flaw was found in libpng. A remote attacker could exploit an out-of-bounds read and write vulnerability in the ARM/AArch64 Neon-optimized palette expansion path. This occurs when processing a final partial chunk of 8-bit paletted rows without verifying sufficient input pixels, leading to dereferencing pointers before the start of the row buffer and writing expanded pixel data to underflowed positions. This flaw can result in information disclosure and denial of service.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | Type: | --- | |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 2452107, 2452108, 2452110, 2452121, 2452122, 2452123, 2452124, 2452125, 2452128, 2452130, 2452131, 2452133, 2452111, 2452112, 2452113, 2452114, 2452115, 2452116, 2452117, 2452118, 2452119, 2452120, 2452129, 2452132 | ||
| Bug Blocks: | |||
|
Description
OSIDB Bzimport
2026-03-26 18:03:16 UTC
This issue has been addressed in the following products: Red Hat Enterprise Linux 10 Via RHSA-2026:7672 https://access.redhat.com/errata/RHSA-2026:7672 This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2026:7671 https://access.redhat.com/errata/RHSA-2026:7671 This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2026:8052 https://access.redhat.com/errata/RHSA-2026:8052 This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2026:8459 https://access.redhat.com/errata/RHSA-2026:8459 This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2026:9345 https://access.redhat.com/errata/RHSA-2026:9345 This issue has been addressed in the following products: Red Hat Enterprise Linux 10 Via RHSA-2026:9638 https://access.redhat.com/errata/RHSA-2026:9638 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Via RHSA-2026:11805 https://access.redhat.com/errata/RHSA-2026:11805 This issue has been addressed in the following products: Red Hat Enterprise Linux 10.0 Extended Update Support Via RHSA-2026:11813 https://access.redhat.com/errata/RHSA-2026:11813 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Via RHSA-2026:12264 https://access.redhat.com/errata/RHSA-2026:12264 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.6 Extended Update Support Via RHSA-2026:13342 https://access.redhat.com/errata/RHSA-2026:13342 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Via RHSA-2026:13412 https://access.redhat.com/errata/RHSA-2026:13412 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.4 Extended Update Support Via RHSA-2026:13533 https://access.redhat.com/errata/RHSA-2026:13533 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Via RHSA-2026:13596 https://access.redhat.com/errata/RHSA-2026:13596 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.4 Extended Update Support Via RHSA-2026:13582 https://access.redhat.com/errata/RHSA-2026:13582 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.6 Extended Update Support Via RHSA-2026:13583 https://access.redhat.com/errata/RHSA-2026:13583 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On Via RHSA-2026:13600 https://access.redhat.com/errata/RHSA-2026:13600 This issue has been addressed in the following products: Red Hat Enterprise Linux 10.0 Extended Update Support Via RHSA-2026:13665 https://access.redhat.com/errata/RHSA-2026:13665 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Red Hat Enterprise Linux 8.8 Telecommunications Update Service Via RHSA-2026:13682 https://access.redhat.com/errata/RHSA-2026:13682 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Red Hat Enterprise Linux 8.6 Telecommunications Update Service Via RHSA-2026:13683 https://access.redhat.com/errata/RHSA-2026:13683 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Via RHSA-2026:13922 https://access.redhat.com/errata/RHSA-2026:13922 This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Extended Lifecycle Support Via RHSA-2026:13977 https://access.redhat.com/errata/RHSA-2026:13977 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Red Hat Enterprise Linux 8.8 Telecommunications Update Service Via RHSA-2026:14223 https://access.redhat.com/errata/RHSA-2026:14223 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On Via RHSA-2026:14303 https://access.redhat.com/errata/RHSA-2026:14303 This issue has been addressed in the following products: Red Hat Enterprise Linux 10 Via RHSA-2026:14790 https://access.redhat.com/errata/RHSA-2026:14790 This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2026:14791 https://access.redhat.com/errata/RHSA-2026:14791 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Red Hat Enterprise Linux 8.6 Telecommunications Update Service Via RHSA-2026:15889 https://access.redhat.com/errata/RHSA-2026:15889 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.6 Extended Update Support Via RHSA-2026:17524 https://access.redhat.com/errata/RHSA-2026:17524 This issue has been addressed in the following products: Red Hat Enterprise Linux 10.0 Extended Update Support Via RHSA-2026:17567 https://access.redhat.com/errata/RHSA-2026:17567 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.4 Extended Update Support Via RHSA-2026:17603 https://access.redhat.com/errata/RHSA-2026:17603 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Via RHSA-2026:17642 https://access.redhat.com/errata/RHSA-2026:17642 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Via RHSA-2026:17685 https://access.redhat.com/errata/RHSA-2026:17685 This issue has been addressed in the following products: Red Hat Enterprise Linux 10 Via RHSA-2026:28233 https://access.redhat.com/errata/RHSA-2026:28233 This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2026:28255 https://access.redhat.com/errata/RHSA-2026:28255 |