{"id":"CLSA-2026-1771002358","summary":"libpng: Fix of CVE-2026-22801","details":"- CVE-2026-22801: fix heap buffer over-read in png_image_write_*","modified":"2026-06-01T00:32:40.707072784Z","published":"2026-02-13T17:06:02Z","upstream":["CVE-2026-22801"],"references":[{"type":"ADVISORY","url":"https://errata.tuxcare.com/els_os/tuxcare9.6esu/CLSA-2026-1771002358.html"}],"affected":[{"package":{"name":"libpng","ecosystem":"TuxCare:AlmaLinux:9.6","purl":"pkg:rpm/tuxcare/libpng?distro=almalinux-9.6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:1.6.37-12.el9_6.tuxcare.els5"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1771002358.json"}},{"package":{"name":"libpng-devel","ecosystem":"TuxCare:AlmaLinux:9.6","purl":"pkg:rpm/tuxcare/libpng-devel?distro=almalinux-9.6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:1.6.37-12.el9_6.tuxcare.els5"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1771002358.json"}},{"package":{"name":"libpng-static","ecosystem":"TuxCare:AlmaLinux:9.6","purl":"pkg:rpm/tuxcare/libpng-static?distro=almalinux-9.6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:1.6.37-12.el9_6.tuxcare.els5"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1771002358.json"}},{"package":{"name":"libpng-tools","ecosystem":"TuxCare:AlmaLinux:9.6","purl":"pkg:rpm/tuxcare/libpng-tools?distro=almalinux-9.6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:1.6.37-12.el9_6.tuxcare.els5"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1771002358.json"}}],"schema_version":"1.7.5"}