UBUNTU-CVE-2026-27168
- Source
- https://ubuntu.com/security/CVE-2026-27168
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-27168.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2026-27168
- Upstream
- Published
- 2026-02-21T00:16:00Z
- Modified
- 2026-03-04T06:31:50.184426Z
- Severity
-
- 8.8 (High) CVSS_V3 - CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Ubuntu - medium
- Summary
- [none]
- Details
-
SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles. All versions are vulnerable to Heap-based Buffer Overflow through the XWD parser's use of the bytesperline value. The value os read directly from the file as the read size in io->strictread(), and is never compared to the actual size of the destination buffer. An attacker can provide an XWD file with an arbitrarily large bytesper_line, causing a massive write operation beyond the buffer heap allocated for the image pixels. The issue did not have a fix at the time of publication.
- References
Affected packages
Ubuntu:24.04:LTS / sail
Package
- Name
- sail
- Purl
- pkg:deb/ubuntu/sail@0.9.0+repack-2.1build1?arch=source&distro=noble
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_version": "0.9.0+repack-2.1build1",
"binary_name": "libsail-c++-dev"
},
{
"binary_version": "0.9.0+repack-2.1build1",
"binary_name": "libsail-c++0t64"
},
{
"binary_version": "0.9.0+repack-2.1build1",
"binary_name": "libsail-common-dev"
},
{
"binary_version": "0.9.0+repack-2.1build1",
"binary_name": "libsail-common0t64"
},
{
"binary_version": "0.9.0+repack-2.1build1",
"binary_name": "libsail-dev"
},
{
"binary_version": "0.9.0+repack-2.1build1",
"binary_name": "libsail-manip-dev"
},
{
"binary_version": "0.9.0+repack-2.1build1",
"binary_name": "libsail-manip0t64"
},
{
"binary_version": "0.9.0+repack-2.1build1",
"binary_name": "libsail0t64"
},
{
"binary_version": "0.9.0+repack-2.1build1",
"binary_name": "sail-codecs"
}
]
}
Ubuntu:25.10 / sail
Package
- Name
- sail
- Purl
- pkg:deb/ubuntu/sail@0.9.9-1?arch=source&distro=questing
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_version": "0.9.9-1",
"binary_name": "libsail-c++-dev"
},
{
"binary_version": "0.9.9-1",
"binary_name": "libsail-c++0t64"
},
{
"binary_version": "0.9.9-1",
"binary_name": "libsail-common-dev"
},
{
"binary_version": "0.9.9-1",
"binary_name": "libsail-common0t64"
},
{
"binary_version": "0.9.9-1",
"binary_name": "libsail-dev"
},
{
"binary_version": "0.9.9-1",
"binary_name": "libsail-manip-dev"
},
{
"binary_version": "0.9.9-1",
"binary_name": "libsail-manip0t64"
},
{
"binary_version": "0.9.9-1",
"binary_name": "libsail0t64"
},
{
"binary_version": "0.9.9-1",
"binary_name": "sail-codecs"
}
]
}