CVE-2026-40930

Published: Giu 04, 2026 Last Modified: Giu 04, 2026
ExploitDB:
Other exploit source:
Google Dorks:
MEDIUM 5,4
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: none
User Interaction: required
Scope: unchanged
Confidentiality: none
Integrity: low
Availability: low

Description

AI Translation Available

LIBPNG is a reference library for use in applications that process PNG (Portable Network Graphics) raster image files. In version 1.8.0, three inter-frame chunk discard paths in the push-mode APNG parser clear the chunk-header flag without consuming the chunk body and CRC, allowing attacker-controlled bytes inside an ignored ancillary chunk to be reinterpreted as a fresh chunk header on the next call to `png_process_data`. Commit faf06924688b62d7c1654b5ceddedbde66ffadb4 fixes the issue.

436

Interpretation Conflict

Incomplete
Abstraction: Class Structure: Simple
Common Consequences
Security Scopes Affected:
Integrity Other
Potential Impacts:
Unexpected State Varies By Context
Applicable Platforms
All platforms may be affected
View CWE Details
http://www.openwall.com/lists/oss-security/2026/05/15/21
http://www.openwall.com/lists/oss-security/2026/05/15/21
https://github.com/pnggroup/libpng/commit/faf06924688b62d7c…
https://github.com/pnggroup/libpng/commit/faf06924688b62d7c1654b5ceddedbde66ffa…
https://github.com/pnggroup/libpng/security/advisories/GHSA…
https://github.com/pnggroup/libpng/security/advisories/GHSA-c4v6-gxrq-6g2x