2416907 – (CVE-2025-65018) CVE-2025-65018 libpng: LIBPNG heap buffer overflow

Bug 2416907 (CVE-2025-65018) - CVE-2025-65018 libpng: LIBPNG heap buffer overflow

Summary: CVE-2025-65018 libpng: LIBPNG heap buffer overflow

Keywords:
Status:	NEW
Alias:	CVE-2025-65018
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2417407 2417409 2417412 2417416 2417419 2417423 2417427 2417431 2417433 2417437 2417442 2417444 2417446 2417448 2417452 2417456 2417458 2417460 2417463 2417466 2417471 2417473 2417475 2417478 2417480 2417482 2417484 2417486 2417488
Blocks:
TreeView+	depends on / blocked

Reported:	2025-11-25 00:01 UTC by OSIDB Bzimport
Modified:	2025-11-27 00:50 UTC (History)
CC List:	17 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-11-25 00:01:34 UTC

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From version 1.6.0 to before 1.6.51, there is a heap buffer overflow vulnerability in the libpng simplified API function png_image_finish_read when processing 16-bit interlaced PNGs with 8-bit output format. Attacker-crafted interlaced PNG files cause heap writes beyond allocated buffer bounds. This issue has been patched in version 1.6.51.

Note You need to log in before you can comment on or make changes to this bug.