{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/12113?format=json","vulnerability_id":"VCID-msp8-t4u3-4ubt","summary":"libpng: libpng: Denial of service and information disclosure via heap buffer over-read in png_image_finish_read","aliases":[{"alias":"CVE-2026-22695"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/237434?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=aarch64&distroversion=v3.22&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=aarch64&distroversion=v3.22&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/237435?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=armhf&distroversion=v3.22&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=armhf&distroversion=v3.22&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/237436?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=armv7&distroversion=v3.22&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=armv7&distroversion=v3.22&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/237437?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=loongarch64&distroversion=v3.22&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=loongarch64&distroversion=v3.22&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/237438?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=ppc64le&distroversion=v3.22&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=ppc64le&distroversion=v3.22&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/237439?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=riscv64&distroversion=v3.22&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=riscv64&distroversion=v3.22&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/237440?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=s390x&distroversion=v3.22&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=s390x&distroversion=v3.22&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/237442?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=x86_64&distroversion=v3.22&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=x86_64&distroversion=v3.22&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/237441?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=x86&distroversion=v3.22&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=x86&distroversion=v3.22&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/100427?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=aarch64&distroversion=v3.20&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=aarch64&distroversion=v3.20&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/157768?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=aarch64&distroversion=v3.23&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=aarch64&distroversion=v3.23&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/100428?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=armhf&distroversion=v3.20&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=armhf&distroversion=v3.20&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/157769?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=armhf&distroversion=v3.23&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=armhf&distroversion=v3.23&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/100429?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=armv7&distroversion=v3.20&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=armv7&distroversion=v3.20&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/157770?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=armv7&distroversion=v3.23&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=armv7&distroversion=v3.23&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/157772?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=loongarch64&distroversion=v3.23&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=loongarch64&distroversion=v3.23&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/100430?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=ppc64le&distroversion=v3.20&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=ppc64le&distroversion=v3.20&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/157773?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=ppc64le&distroversion=v3.23&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=ppc64le&distroversion=v3.23&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/100431?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=riscv64&distroversion=v3.20&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=riscv64&distroversion=v3.20&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/157774?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=riscv64&distroversion=v3.23&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=riscv64&distroversion=v3.23&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/100432?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=s390x&distroversion=v3.20&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=s390x&distroversion=v3.20&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/157775?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=s390x&distroversion=v3.23&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=s390x&distroversion=v3.23&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/100434?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=x86_64&distroversion=v3.20&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=x86_64&distroversion=v3.20&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/157777?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=x86_64&distroversion=v3.23&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=x86_64&distroversion=v3.23&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/100433?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=x86&distroversion=v3.20&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=x86&distroversion=v3.20&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/157776?format=json","purl":"pkg:apk/alpine/libpng@1.6.54-r0?arch=x86&distroversion=v3.23&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libpng@1.6.54-r0%3Farch=x86&distroversion=v3.23&reponame=main"},{"url":"http://public2.vulnerablecode.io/api/packages/350282?format=json","purl":"pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-5qkr-qykw-vqgt"},{"vulnerability":"VCID-u35c-rj5s-fqes"},{"vulnerability":"VCID-yusd-m9he-3kbj"},{"vulnerability":"VCID-zx6x-7hz7-zug3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/350300?format=json","purl":"pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/350299?format=json","purl":"pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/350280?format=json","purl":"pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-yusd-m9he-3kbj"},{"vulnerability":"VCID-zx6x-7hz7-zug3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/350302?format=json","purl":"pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/350284?format=json","purl":"pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/350301?format=json","purl":"pkg:deb/debian/libpng1.6@1.6.54-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.54-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/350283?format=json","purl":"pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/16324?format=json","purl":"pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1?arch=el7_9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-26ny-2nf5-33d9"},{"vulnerability":"VCID-2vju-erjg-zueq"},{"vulnerability":"VCID-5gd8-48gu-dbhw"},{"vulnerability":"VCID-5m1f-m92p-8bay"},{"vulnerability":"VCID-7d39-dxkj-8ubc"},{"vulnerability":"VCID-8xhr-53rx-mfap"},{"vulnerability":"VCID-9q22-2kzh-rbeq"},{"vulnerability":"VCID-hzgg-fwqs-mkc1"},{"vulnerability":"VCID-je1j-8uhm-h3gu"},{"vulnerability":"VCID-msp8-t4u3-4ubt"},{"vulnerability":"VCID-pd31-msjy-e3fe"},{"vulnerability":"VCID-xw2w-9v3w-7ugy"},{"vulnerability":"VCID-yjkf-9ue5-6udb"},{"vulnerability":"VCID-z1r7-zzxy-dqh8"},{"vulnerability":"VCID-ztv5-xba4-c3cc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1%3Farch=el7_9"},{"url":"http://public2.vulnerablecode.io/api/packages/16323?format=json","purl":"pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1?arch=el8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-26ny-2nf5-33d9"},{"vulnerability":"VCID-2vju-erjg-zueq"},{"vulnerability":"VCID-5gd8-48gu-dbhw"},{"vulnerability":"VCID-5m1f-m92p-8bay"},{"vulnerability":"VCID-7d39-dxkj-8ubc"},{"vulnerability":"VCID-8xhr-53rx-mfap"},{"vulnerability":"VCID-9q22-2kzh-rbeq"},{"vulnerability":"VCID-hzgg-fwqs-mkc1"},{"vulnerability":"VCID-je1j-8uhm-h3gu"},{"vulnerability":"VCID-msp8-t4u3-4ubt"},{"vulnerability":"VCID-pd31-msjy-e3fe"},{"vulnerability":"VCID-xw2w-9v3w-7ugy"},{"vulnerability":"VCID-yjkf-9ue5-6udb"},{"vulnerability":"VCID-z1r7-zzxy-dqh8"},{"vulnerability":"VCID-ztv5-xba4-c3cc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1%3Farch=el8"},{"url":"http://public2.vulnerablecode.io/api/packages/16325?format=json","purl":"pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1?arch=el9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-26ny-2nf5-33d9"},{"vulnerability":"VCID-2vju-erjg-zueq"},{"vulnerability":"VCID-5gd8-48gu-dbhw"},{"vulnerability":"VCID-5m1f-m92p-8bay"},{"vulnerability":"VCID-7d39-dxkj-8ubc"},{"vulnerability":"VCID-8xhr-53rx-mfap"},{"vulnerability":"VCID-9q22-2kzh-rbeq"},{"vulnerability":"VCID-hzgg-fwqs-mkc1"},{"vulnerability":"VCID-je1j-8uhm-h3gu"},{"vulnerability":"VCID-msp8-t4u3-4ubt"},{"vulnerability":"VCID-pd31-msjy-e3fe"},{"vulnerability":"VCID-xw2w-9v3w-7ugy"},{"vulnerability":"VCID-yjkf-9ue5-6udb"},{"vulnerability":"VCID-z1r7-zzxy-dqh8"},{"vulnerability":"VCID-ztv5-xba4-c3cc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1%3Farch=el9"},{"url":"http://public2.vulnerablecode.io/api/packages/25889?format=json","purl":"pkg:rpm/redhat/libpng@2:1.6.34-8.el8_2?arch=2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-msp8-t4u3-4ubt"},{"vulnerability":"VCID-pd31-msjy-e3fe"},{"vulnerability":"VCID-xw2w-9v3w-7ugy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.34-8.el8_2%3Farch=2"},{"url":"http://public2.vulnerablecode.io/api/packages/25876?format=json","purl":"pkg:rpm/redhat/libpng@2:1.6.34-8.el8_4?arch=2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-msp8-t4u3-4ubt"},{"vulnerability":"VCID-pd31-msjy-e3fe"},{"vulnerability":"VCID-xw2w-9v3w-7ugy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.34-8.el8_4%3Farch=2"},{"url":"http://public2.vulnerablecode.io/api/packages/25886?format=json","purl":"pkg:rpm/redhat/libpng@2:1.6.34-8.el8_6?arch=2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-msp8-t4u3-4ubt"},{"vulnerability":"VCID-pd31-msjy-e3fe"},{"vulnerability":"VCID-xw2w-9v3w-7ugy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.34-8.el8_6%3Farch=2"},{"url":"http://public2.vulnerablecode.io/api/packages/25892?format=json","purl":"pkg:rpm/redhat/libpng@2:1.6.34-8.el8_8?arch=2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-msp8-t4u3-4ubt"},{"vulnerability":"VCID-pd31-msjy-e3fe"},{"vulnerability":"VCID-xw2w-9v3w-7ugy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.34-8.el8_8%3Farch=2"},{"url":"http://public2.vulnerablecode.io/api/packages/25624?format=json","purl":"pkg:rpm/redhat/libpng@2:1.6.34-10?arch=el8_10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-msp8-t4u3-4ubt"},{"vulnerability":"VCID-pd31-msjy-e3fe"},{"vulnerability":"VCID-xw2w-9v3w-7ugy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.34-10%3Farch=el8_10"},{"url":"http://public2.vulnerablecode.io/api/packages/25793?format=json","purl":"pkg:rpm/redhat/libpng@2:1.6.37-12.el9_0?arch=2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-msp8-t4u3-4ubt"},{"vulnerability":"VCID-pd31-msjy-e3fe"},{"vulnerability":"VCID-xw2w-9v3w-7ugy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.37-12.el9_0%3Farch=2"},{"url":"http://public2.vulnerablecode.io/api/packages/25797?format=json","purl":"pkg:rpm/redhat/libpng@2:1.6.37-12.el9_2?arch=2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-msp8-t4u3-4ubt"},{"vulnerability":"VCID-pd31-msjy-e3fe"},{"vulnerability":"VCID-xw2w-9v3w-7ugy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.37-12.el9_2%3Farch=2"},{"url":"http://public2.vulnerablecode.io/api/packages/25779?format=json","purl":"pkg:rpm/redhat/libpng@2:1.6.37-12.el9_4?arch=2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-msp8-t4u3-4ubt"},{"vulnerability":"VCID-pd31-msjy-e3fe"},{"vulnerability":"VCID-xw2w-9v3w-7ugy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.37-12.el9_4%3Farch=2"},{"url":"http://public2.vulnerablecode.io/api/packages/25788?format=json","purl":"pkg:rpm/redhat/libpng@2:1.6.37-12.el9_6?arch=2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-msp8-t4u3-4ubt"},{"vulnerability":"VCID-pd31-msjy-e3fe"},{"vulnerability":"VCID-xw2w-9v3w-7ugy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.37-12.el9_6%3Farch=2"},{"url":"http://public2.vulnerablecode.io/api/packages/25895?format=json","purl":"pkg:rpm/redhat/libpng@2:1.6.37-12.el9_7?arch=2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-msp8-t4u3-4ubt"},{"vulnerability":"VCID-pd31-msjy-e3fe"},{"vulnerability":"VCID-xw2w-9v3w-7ugy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.37-12.el9_7%3Farch=2"},{"url":"http://public2.vulnerablecode.io/api/packages/25882?format=json","purl":"pkg:rpm/redhat/libpng@2:1.6.40-8.el10_0?arch=2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-msp8-t4u3-4ubt"},{"vulnerability":"VCID-pd31-msjy-e3fe"},{"vulnerability":"VCID-xw2w-9v3w-7ugy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.40-8.el10_0%3Farch=2"},{"url":"http://public2.vulnerablecode.io/api/packages/25718?format=json","purl":"pkg:rpm/redhat/libpng@2:1.6.40-8.el10_1?arch=2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-msp8-t4u3-4ubt"},{"vulnerability":"VCID-pd31-msjy-e3fe"},{"vulnerability":"VCID-xw2w-9v3w-7ugy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.40-8.el10_1%3Farch=2"},{"url":"http://public2.vulnerablecode.io/api/packages/17249?format=json","purl":"pkg:rpm/redhat/libpng-main@1.6.56-1?arch=hum1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1z6f-cser-cycy"},{"vulnerability":"VCID-26ny-2nf5-33d9"},{"vulnerability":"VCID-5m1f-m92p-8bay"},{"vulnerability":"VCID-66u3-82zs-5bek"},{"vulnerability":"VCID-9jye-h6m1-uqhf"},{"vulnerability":"VCID-g9jj-qcjq-h3d4"},{"vulnerability":"VCID-msp8-t4u3-4ubt"},{"vulnerability":"VCID-pd31-msjy-e3fe"},{"vulnerability":"VCID-xw2w-9v3w-7ugy"},{"vulnerability":"VCID-yusd-m9he-3kbj"},{"vulnerability":"VCID-zhj1-4sn9-qbbm"},{"vulnerability":"VCID-ztv5-xba4-c3cc"},{"vulnerability":"VCID-zx6x-7hz7-zug3"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng-main@1.6.56-1%3Farch=hum1"},{"url":"http://public2.vulnerablecode.io/api/packages/25738?format=json","purl":"pkg:rpm/redhat/mingw-libpng@1.6.34-2?arch=el8_10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-msp8-t4u3-4ubt"},{"vulnerability":"VCID-pd31-msjy-e3fe"},{"vulnerability":"VCID-xw2w-9v3w-7ugy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/mingw-libpng@1.6.34-2%3Farch=el8_10"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-22695.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-22695.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-22695","reference_id":"","reference_type":"","scores":[{"value":"0.00043","scoring_system":"epss","scoring_elements":"0.13604","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-22695"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-22695","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-22695"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1125443","reference_id":"1125443","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1125443"},{"reference_url":"https://github.com/pnggroup/libpng/commit/218612ddd6b17944e21eda56caf8b4bf7779d1ea","reference_id":"218612ddd6b17944e21eda56caf8b4bf7779d1ea","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-13T14:13:00Z/"}],"url":"https://github.com/pnggroup/libpng/commit/218612ddd6b17944e21eda56caf8b4bf7779d1ea"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2428825","reference_id":"2428825","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2428825"},{"reference_url":"https://github.com/pnggroup/libpng/issues/778","reference_id":"778","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-13T14:13:00Z/"}],"url":"https://github.com/pnggroup/libpng/issues/778"},{"reference_url":"https://github.com/pnggroup/libpng/commit/e4f7ad4ea2","reference_id":"e4f7ad4ea2","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-13T14:13:00Z/"}],"url":"https://github.com/pnggroup/libpng/commit/e4f7ad4ea2"},{"reference_url":"https://github.com/pnggroup/libpng/security/advisories/GHSA-mmq5-27w3-rxpp","reference_id":"GHSA-mmq5-27w3-rxpp","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-13T14:13:00Z/"}],"url":"https://github.com/pnggroup/libpng/security/advisories/GHSA-mmq5-27w3-rxpp"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:12274","reference_id":"RHSA-2026:12274","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:12274"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:16174","reference_id":"RHSA-2026:16174","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:16174"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:3405","reference_id":"RHSA-2026:3405","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:3405"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:3551","reference_id":"RHSA-2026:3551","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:3551"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:3573","reference_id":"RHSA-2026:3573","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:3573"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:3574","reference_id":"RHSA-2026:3574","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:3574"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:3575","reference_id":"RHSA-2026:3575","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:3575"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:3576","reference_id":"RHSA-2026:3576","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:3576"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:3577","reference_id":"RHSA-2026:3577","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:3577"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4306","reference_id":"RHSA-2026:4306","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4501","reference_id":"RHSA-2026:4501","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4501"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4728","reference_id":"RHSA-2026:4728","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4728"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4729","reference_id":"RHSA-2026:4729","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4729"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4730","reference_id":"RHSA-2026:4730","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4730"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4731","reference_id":"RHSA-2026:4731","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4731"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:4732","reference_id":"RHSA-2026:4732","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:4732"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5606","reference_id":"RHSA-2026:5606","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:5606"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:6732","reference_id":"RHSA-2026:6732","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:6732"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8746","reference_id":"RHSA-2026:8746","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8746"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8747","reference_id":"RHSA-2026:8747","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8747"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8748","reference_id":"RHSA-2026:8748","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:8748"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:9254","reference_id":"RHSA-2026:9254","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:9254"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:9255","reference_id":"RHSA-2026:9255","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2026:9255"},{"reference_url":"https://usn.ubuntu.com/7963-1/","reference_id":"USN-7963-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7963-1/"},{"reference_url":"https://usn.ubuntu.com/8035-1/","reference_id":"USN-8035-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/8035-1/"}],"weaknesses":[{"cwe_id":125,"name":"Out-of-bounds Read","description":"The product reads data past the end, or before the beginning, of the intended buffer."}],"exploits":[],"severity_range_score":"6.1 - 6.1","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-msp8-t4u3-4ubt"}