LIBPNG has a heap buffer over-read in png_image_read_direct_scaled (regression from CVE-2025-65018 fix)

🗓️ 14 Jan 2026 09:03:31Reported by MicrosoftType

LIBPNG heap buffer over-read in png_image_read_direct_scaled due to regression after a vulnerability fix.

Reporter	Title	Published	Views	Family All 640
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in DataStage on Cloud Pak for Data	25 Feb 202616:28	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Instana Observability has addressed Multiple Vulnerabilities within Instana Agent container image	3 Mar 202613:53	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM is vulnerable to using components with known vulnerabilities	28 Jan 202615:42	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple secuirty vulnerabilies addressed with IBM Business Automation Workflow (traditional and containers) March 2026	27 Mar 202608:58	–	ibm
IBM Security Bulletins	Security Bulletin:Vulnerabilities in LIBPNG affects IBM Netezza Appliance	15 Apr 202611:16	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in libpng affects IBM Netezza Appliance	22 Apr 202612:14	–	ibm
GithubExploit	Exploit for CVE-2025-64720	25 Nov 202510:19	–	githubexploit
GithubExploit	Exploit for Out-of-bounds Read in Libpng	22 Jan 202611:35	–	githubexploit
GithubExploit	Exploit for Out-of-bounds Read in Libpng	14 Dec 202518:41	–	githubexploit
FreeBSD	png -- Multiple vulnerabilities	24 Nov 202500:00	–	freebsd