Alerts This Week
Warning Icon 1 677
Alerts This Week
Warning Icon 1 677

Ubuntu 16.04 14.04 libpng Critical DoS CVE-2025-64505 CVE-2026-25646

Calendar Mar 12, 2026 User Avatar LinuxSecurity Advisories
1 - 2 min read
Ubuntu Large Esm H500
Topics%20covered

Topics Covered

security advisory denial of service critical Ubuntu libpng sensitive information
Several security issues were fixed in libpng. 
==========================================================================
Ubuntu Security Notice USN-8081-1
March 11, 2026

libpng vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 16.04 LTS
- Ubuntu 14.04 LTS

Summary:

Several security issues were fixed in libpng.

Software Description:
- libpng: PNG (Portable Network Graphics) file library

Details:

It was discovered that libpng did not properly handle memory when processing
certain PNG files. An attacker could possibly use this issue to cause libpng
to crash, resulting in a denial of service, or disclose sensitive information.
(CVE-2025-64505)

Joshua Inscoe discovered that libpng did not properly handle memory when
processing certain PNG files. An attacker could possibly use this issue
to cause libpng to crash, resulting in a denial of service, disclose sensitive
information, or execute arbitrary code. (CVE-2026-25646)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 LTS
  libpng12-0                      1.2.54-1ubuntu1.1+esm2
                                  Available with Ubuntu Pro

Ubuntu 14.04 LTS
  libpng12-0                      1.2.50-1ubuntu2.14.04.3+esm1
                                  Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References:
  https://ubuntu.com/security/notices/USN-8081-1
  CVE-2025-64505, CVE-2026-25646

Ubuntu 16.04 14.04 libpng Critical DoS CVE-2025-64505 CVE-2026-25646

ubuntu
Calendar Grey March 12, 2026
Dist Ubuntu Esm H88
Discover critical security issues fixed in libpng for Ubuntu 14.04 and 16.04, preventing DoS and sensitive info leaks.
Several security issues were fixed in libpng.

Summary

A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 16.04 LTS - Ubuntu 14.04 LTS Summary: Several security issues were fixed in libpng. Software Description: - libpng: PNG (Portable Network Graphics) file library Details: It was discovered that libpng did not properly handle memory when processing certain PNG files. An attacker could possibly use this issue to cause libpng to crash, resulting in a denial of service, or disclose sensitive information. (CVE-2025-64505) Joshua Inscoe discovered that libpng did not properly handle memory when processing certain PNG files. An attacker could possibly use this issue to cause libpng to crash, resulting in a denial of service, disclose sensitive information, or execute arbitrary code. (CVE-2026-25646)

Topics%20covered

Topics Covered

security advisory denial of service critical Ubuntu libpng sensitive information

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 16.04 LTS libpng12-0 1.2.54-1ubuntu1.1+esm2 Available with Ubuntu Pro Ubuntu 14.04 LTS libpng12-0 1.2.50-1ubuntu2.14.04.3+esm1 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-8081-1

CVE-2025-64505, CVE-2026-25646

Severity
critical
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-8081-1

Topics%20covered

Topics Covered

security advisory denial of service critical Ubuntu libpng sensitive information

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here