CVE-2026-27168
- Source
- https://cve.org/CVERecord?id=CVE-2026-27168
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-27168.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2026-27168
- Aliases
-
- GHSA-3g38-x2pj-mv55
- Downstream
- Published
- 2026-02-20T23:34:54.580Z
- Modified
- 2026-02-26T02:34:21.555958Z
- Severity
-
- 8.8 (High) CVSS_V3 - CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- SAIL: Heap-based Buffer Overflow in Sail-codecs-xwd
- Details
-
SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles. All versions are vulnerable to Heap-based Buffer Overflow through the XWD parser's use of the bytesperline value. The value os read directly from the file as the read size in io->strictread(), and is never compared to the actual size of the destination buffer. An attacker can provide an XWD file with an arbitrarily large bytesper_line, causing a massive write operation beyond the buffer heap allocated for the image pixels. The issue did not have a fix at the time of publication.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/27xxx/CVE-2026-27168.json", "cna_assigner": "GitHub_M", "cwe_ids": [ "CWE-122" ] }- References
Affected packages
Git / github.com/happyseafox/sail
Affected versions
v0.*
v0.9.0
v0.9.0-pre1
v0.9.0-pre10
v0.9.0-pre11
v0.9.0-pre12
v0.9.0-pre13
v0.9.0-pre14
v0.9.0-pre15
v0.9.0-pre16
v0.9.0-pre17
v0.9.0-pre18
v0.9.0-pre19
v0.9.0-pre2
v0.9.0-pre20
v0.9.0-pre21
v0.9.0-pre22
v0.9.0-pre23
v0.9.0-pre3
v0.9.0-pre4
v0.9.0-pre5
v0.9.0-pre6
v0.9.0-pre7
v0.9.0-pre8
v0.9.0-pre9
v0.9.0-rc1
v0.9.0-rc2
v0.9.0-rc3
v0.9.1
v0.9.10
v0.9.2
v0.9.3
v0.9.4
v0.9.5
v0.9.6
v0.9.7
v0.9.8
v0.9.9