CVE-2025-64720
- Source
- https://cve.org/CVERecord?id=CVE-2025-64720
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-64720.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-64720
- Aliases
-
- GHSA-hfc7-ph9c-wcww
- Downstream
- Related
- Published
- 2025-11-24T23:45:38.315Z
- Modified
- 2026-05-18T05:59:38.412460011Z
- Severity
-
- 7.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H CVSS Calculator
- Summary
- LIBPNG is vulnerable to a buffer overflow in `png_image_read_composite` via incorrect palette premultiplication
- Details
-
LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From version 1.6.0 to before 1.6.51, an out-of-bounds read vulnerability exists in pngimagereadcomposite when processing palette images with PNGFLAGOPTIMIZEALPHA enabled. The palette compositing code in pnginitread_transformations incorrectly applies background compositing during premultiplication, violating the invariant component ≤ alpha × 257 required by the simplified PNG API. This issue has been patched in version 1.6.51.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/64xxx/CVE-2025-64720.json", "cna_assigner": "GitHub_M", "cwe_ids": [ "CWE-125" ] }- References
-
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/64xxx/CVE-2025-64720.json
- https://github.com/pnggroup/libpng/security/advisories/GHSA-hfc7-ph9c-wcww
- https://nvd.nist.gov/vuln/detail/CVE-2025-64720
- https://github.com/pnggroup/libpng/issues/686
- https://github.com/pnggroup/libpng/commit/08da33b4c88cfcd36e5a706558a8d7e0e4773643
- https://github.com/pnggroup/libpng/pull/751
Affected packages
Git / github.com/pnggroup/libpng
Affected versions
libpng-1.*
libpng-1.6.10-signed
libpng-1.6.11-signed
libpng-1.6.12-signed
libpng-1.6.13-signed
libpng-1.6.14-signed
libpng-1.6.15-signed
libpng-1.6.16-signed
libpng-1.6.17-signed
libpng-1.6.18-signed
libpng-1.6.2-signed
libpng-1.6.20-signed
libpng-1.6.21-signed
libpng-1.6.23-signed
libpng-1.6.24-signed
libpng-1.6.25-signed
libpng-1.6.26-signed
libpng-1.6.29-signed
libpng-1.6.3-signed
libpng-1.6.30-master-signed
libpng-1.6.30-signed
libpng-1.6.31-master-signed
libpng-1.6.31-signed
libpng-1.6.4-signed
libpng-1.6.7-signed
libpng-1.6.8-signed
libpng-1.6.9-signed
v1.*
v1.6.0
v1.6.1
v1.6.10
v1.6.10beta01
v1.6.10beta02
v1.6.10rc01
v1.6.10rc02
v1.6.10rc03
v1.6.11
v1.6.11beta01
v1.6.11beta02
v1.6.11beta03
v1.6.11beta04
v1.6.11beta05
v1.6.11beta06
v1.6.11rc01
v1.6.11rc02
v1.6.12
v1.6.12rc01
v1.6.12rc02
v1.6.12rc03
v1.6.13
v1.6.13beta01
v1.6.13beta02
v1.6.13beta03
v1.6.13beta04
v1.6.13rc01
v1.6.14
v1.6.14beta01
v1.6.14beta02
v1.6.14beta03
v1.6.14beta04
v1.6.14beta05
v1.6.14beta06
v1.6.14beta07
v1.6.14rc01
v1.6.14rc02
v1.6.15
v1.6.15beta01
v1.6.15beta02
v1.6.15beta03
v1.6.15beta04
v1.6.15beta05
v1.6.15beta06
v1.6.15beta07
v1.6.15beta08
v1.6.15rc01
v1.6.15rc02
v1.6.15rc03
v1.6.16
v1.6.16beta01
v1.6.16beta02
v1.6.16beta03
v1.6.16rc01
v1.6.16rc02
v1.6.16rc03
v1.6.17
v1.6.17beta01
v1.6.17beta02
v1.6.17beta03
v1.6.17beta04
v1.6.17beta05
v1.6.17rc01
v1.6.17rc02
v1.6.17rc03
v1.6.17rc04
v1.6.17rc05
v1.6.17rc06
v1.6.18
v1.6.18beta01
v1.6.18beta02
v1.6.18beta03
v1.6.18beta04
v1.6.18beta05
v1.6.18beta06
v1.6.18beta07
v1.6.18beta08
v1.6.18beta09
v1.6.18rc01
v1.6.18rc02
v1.6.18rc03
v1.6.19
v1.6.19beta01
v1.6.19beta02
v1.6.19beta03
v1.6.19beta04
v1.6.19rc01
v1.6.19rc02
v1.6.19rc03
v1.6.19rc04
v1.6.1beta01
v1.6.1beta02
v1.6.1beta03
v1.6.1beta04
v1.6.1beta05
v1.6.1beta06
v1.6.1beta07
v1.6.1beta08
v1.6.1beta09
v1.6.1rc01
v1.6.2
v1.6.20beta01
v1.6.20beta02
v1.6.20beta03
v1.6.20rc01
v1.6.20rc02
v1.6.21
v1.6.21beta01
v1.6.21beta02
v1.6.21beta03
v1.6.21rc01
v1.6.21rc02
v1.6.22
v1.6.22beta01
v1.6.22beta02
v1.6.22beta05
v1.6.22beta06
v1.6.22rc01
v1.6.22rc02
v1.6.22rc03
v1.6.23
v1.6.23beta01
v1.6.23rc01
v1.6.23rc02
v1.6.24
v1.6.24beta02
v1.6.24beta03
v1.6.24beta04
v1.6.24beta05
v1.6.24beta06
v1.6.24rc01
v1.6.24rc02
v1.6.24rc03
v1.6.25
v1.6.25beta02
v1.6.25rc04
v1.6.26
v1.6.26beta01
v1.6.26beta02
v1.6.26beta03
v1.6.26beta04
v1.6.26beta05
v1.6.26beta06
v1.6.26rc01
v1.6.27beta01
v1.6.29
v1.6.29beta02
v1.6.29beta03
v1.6.29rc01
v1.6.2beta01
v1.6.2beta02
v1.6.2rc01
v1.6.2rc02
v1.6.2rc03
v1.6.2rc04
v1.6.2rc05
v1.6.2rc06
v1.6.3
v1.6.30
v1.6.30beta01
v1.6.30beta02
v1.6.30beta03
v1.6.30beta04
v1.6.30rc01
v1.6.31
v1.6.31beta01
v1.6.31beta02
v1.6.31beta03
v1.6.31beta04
v1.6.31beta05
v1.6.31beta06
v1.6.31beta07
v1.6.31rc01
v1.6.31rc02
v1.6.32
v1.6.32beta01
v1.6.32beta02
v1.6.32beta03
v1.6.32beta05
v1.6.32beta06
v1.6.32beta07
v1.6.32beta08
v1.6.32beta09
v1.6.32beta10
v1.6.32beta11
v1.6.32rc01
v1.6.32rc02
v1.6.33
v1.6.33beta01
v1.6.33beta02
v1.6.33beta03
v1.6.33rc01
v1.6.33rc02
v1.6.34
v1.6.35
v1.6.35beta01
v1.6.36
v1.6.37
v1.6.38
v1.6.39
v1.6.3beta01
v1.6.3beta02
v1.6.3beta03
v1.6.3beta04
v1.6.3beta05
v1.6.3beta06
v1.6.3beta07
v1.6.3beta08
v1.6.3beta09
v1.6.3beta10
v1.6.3rc01
v1.6.4
v1.6.40
v1.6.41
v1.6.42
v1.6.43
v1.6.44
v1.6.45
v1.6.46
v1.6.47
v1.6.48
v1.6.49
v1.6.4beta02
v1.6.4rc01
v1.6.5
v1.6.50
v1.6.6
v1.6.7
v1.6.7beta01
v1.6.7beta02
v1.6.7beta03
v1.6.7beta04
v1.6.7rc01
v1.6.7rc02
v1.6.8
v1.6.8beta01
v1.6.8beta02
v1.6.8rc02
v1.6.9
v1.6.9beta01
v1.6.9beta02
v1.6.9beta03
v1.6.9rc01
v1.6.9rc02