CVE-2026-22695

Published Jan 12, 2026

Last updated 6 hours ago

CVSS medium 6.1

Overview

Description
LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From 1.6.51 to 1.6.53, there is a heap buffer over-read in the libpng simplified API function png_image_finish_read when processing interlaced 16-bit PNGs with 8-bit output format and non-minimal row stride. This is a regression introduced by the fix for CVE-2025-65018. This vulnerability is fixed in 1.6.54.
Source
security-advisories@github.com
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
6.1
Impact score
4.2
Exploitability score
1.8
Vector string
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
Severity
MEDIUM

Weaknesses

security-advisories@github.com
CWE-125

Social media

Hype score
Not currently trending

  1. libpng 1.6.54: Two heap buffer over-reads fixed https://t.co/jeApgbUa0l CVE-2026-22695: Heap buffer over-read in png_image_read_direct_scaled (regression from CVE-2025-65018 fix) CVE-2026-22801: Integer truncation causing heap buffer over-read in png_image_write_*

    @oss_security

    13 Jan 2026

    2767 Impressions

    8 Retweets

    32 Likes

    9 Bookmarks

    0 Replies

    0 Quotes

References

Sources include official advisories and independent security research.