CVE-2026-3713

Summary

A flaw has been found in pnggroup libpng up to 1.6.55. Affected by this vulnerability is the function do_pnm2png of the file contrib/pngminus/pnm2png.c of the component pnm2png. This manipulation of the argument width/height causes heap-based buffer overflow. The attack is restricted to local execution. The exploit has been published and may be used. The project was informed of the problem early through an issue report but has not responded yet.

Affected Software

VendorProductVersion RangeStatus
pnggrouplibpng1.6.0affected
pnggrouplibpng1.6.1affected
pnggrouplibpng1.6.2affected
pnggrouplibpng1.6.3affected
pnggrouplibpng1.6.4affected
pnggrouplibpng1.6.5affected
pnggrouplibpng1.6.6affected
pnggrouplibpng1.6.7affected
pnggrouplibpng1.6.8affected
pnggrouplibpng1.6.9affected
pnggrouplibpng1.6.10affected
pnggrouplibpng1.6.11affected
pnggrouplibpng1.6.12affected
pnggrouplibpng1.6.13affected
pnggrouplibpng1.6.14affected
pnggrouplibpng1.6.15affected
pnggrouplibpng1.6.16affected
pnggrouplibpng1.6.17affected
pnggrouplibpng1.6.18affected
pnggrouplibpng1.6.19affected
pnggrouplibpng1.6.20affected
pnggrouplibpng1.6.21affected
pnggrouplibpng1.6.22affected
pnggrouplibpng1.6.23affected
pnggrouplibpng1.6.24affected
pnggrouplibpng1.6.25affected
pnggrouplibpng1.6.26affected
pnggrouplibpng1.6.27affected
pnggrouplibpng1.6.28affected
pnggrouplibpng1.6.29affected
pnggrouplibpng1.6.30affected
pnggrouplibpng1.6.31affected
pnggrouplibpng1.6.32affected
pnggrouplibpng1.6.33affected
pnggrouplibpng1.6.34affected
pnggrouplibpng1.6.35affected
pnggrouplibpng1.6.36affected
pnggrouplibpng1.6.37affected
pnggrouplibpng1.6.38affected
pnggrouplibpng1.6.39affected
pnggrouplibpng1.6.40affected
pnggrouplibpng1.6.41affected
pnggrouplibpng1.6.42affected
pnggrouplibpng1.6.43affected
pnggrouplibpng1.6.44affected
pnggrouplibpng1.6.45affected
pnggrouplibpng1.6.46affected
pnggrouplibpng1.6.47affected
pnggrouplibpng1.6.48affected
pnggrouplibpng1.6.49affected
pnggrouplibpng1.6.50affected
pnggrouplibpng1.6.51affected
pnggrouplibpng1.6.52affected
pnggrouplibpng1.6.53affected
pnggrouplibpng1.6.54affected
pnggrouplibpng1.6.55affected

Weaknesses

  • CWE-122: Heap-based Buffer Overflow
  • CWE-119: Memory Corruption

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: partial

References