PUBLIC MIRROR A read-only public view of Anvil. Only publicly-disclosed findings are shown; the Playbook, techniques, sessions and embargoed research are hidden.

← Findings

LIBPNG-0003

high harness-verified

APNG write-side heap-buffer-overflow on width-varying multi-frame re-encode

🔒 Pending public disclosure

Full technical details — the precise location, reproduction, proof-of-concept and the write-up — are withheld until this finding is publicly disclosed in coordination with the upstream maintainers. The classification below is published; the rest will appear here once the advisory is live.

Classification

Targetlibpng
AreaWrite core
Vuln classoob-write
Severityhigh
Statusharness-verified
Discovered2026-05-02