Overview

File _patchinfo of Package patchinfo.42239

<patchinfo incident="42239">
  <issue tracker="cve" id="2026-22695"/>
  <issue tracker="cve" id="2026-22801"/>
  <issue tracker="bnc" id="1256525">VUL-0: CVE-2026-22695: libpng16: Heap buffer over-read in png_image_finish_read</issue>
  <issue tracker="bnc" id="1256526">VUL-0: CVE-2026-22801: libpng16: Integer truncation causing heap buffer over-read in png_image_write_*</issue>
  <packager>pgajdos</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for libpng16</summary>
  <description>This update for libpng16 fixes the following issues:

- CVE-2026-22695: Fixed heap buffer over-read in png_image_finish_read (bsc#1256525)
- CVE-2026-22801: Fixed integer truncation causing heap buffer over-read in png_image_write_* (bsc#1256526).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places