The libpng library in Red Hat Enterprise Linux 9.2 and related distributions contains three security vulnerabilities: CVE-2026-22801 involves information disclosure and denial of service through integer truncation in the simplified write API; CVE-2026-22695 involves denial of service and information disclosure via a heap buffer over-read in the png_image_finish_read function; and CVE-2026-25646 is a heap buffer overflow in the png_set_quantize function. These vulnerabilities can lead to denial of service and potential information leakage. Red Hat has released updated libpng packages to fix these issues as detailed in advisory RHSA-2026:3575. The advisory covers multiple architectures and product variants of Red Hat Enterprise Linux 9.2. No CVSS scores are provided in the advisory, but the severity is rated as important/high by Red Hat Product Security.

Successful exploitation of these vulnerabilities could allow an attacker to cause denial of service conditions and potentially disclose sensitive information due to buffer over-reads and integer truncation errors in libpng functions. The heap buffer overflow could lead to memory corruption. These issues affect systems using vulnerable versions of libpng in Red Hat Enterprise Linux 9.2 and related products. No known exploits in the wild have been reported at this time.

Red Hat has released updated libpng packages that address these vulnerabilities. Users of affected Red Hat Enterprise Linux 9.2 versions and related products should apply the security update as described in Red Hat advisory RHSA-2026:3575. Detailed instructions and package downloads are available at https://access.redhat.com/articles/11258. Applying these updates will remediate the vulnerabilities. No additional mitigation actions are indicated by the vendor advisory.