You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
image processing security
About this tag
The image processing security tag on WindowsForum.com covers vulnerabilities and patches in core image processing libraries and frameworks used on Windows. Recent discussions include the urgent libpng 1.6.52 patch for CVE-2025-66293, an out-of-bounds read in the simplified read/write API that can cause information disclosure or denial of service. Another topic is CVE-2025-47980 in the Windows Imaging Component (WIC), an information disclosure flaw affecting image decoding across Microsoft and third-party applications. These threads provide technical analysis, mitigation strategies, and implications for IT professionals and end-users. The tag focuses on security issues in image processing components, including memory safety flaws and their real-world impact.
LIBPNG’s maintainers have shipped an urgent patch after researchers discovered a high‑severity out‑of‑bounds read in the simplified read/write API: png_image_read_composite can read up to 1,012 bytes past the end of the png_sRGB_base array when processing valid palette PNGs that include partial...
Windows Imaging Component (WIC), the core framework powering image decoding and editing across numerous Microsoft and third-party applications, faces growing scrutiny after the recent disclosure of CVE-2025-47980 — an information disclosure vulnerability with far-reaching security implications...