CVE-2026-33416 | pnggroup libpng up to 1.6.55 PNG File Parser png_set_tRNS/png_set_PLTE use after free

A vulnerability classified as critical has been found in pnggroup libpng up to 1.6.55. This issue affects the function png_set_tRNS/png_set_PLTE of the component PNG File Parser. The manipulation leads to use after free.

This vulnerability is referenced as CVE-2026-33416. Remote exploitation of the attack is possible. No exploit is available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More