Description

SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles. Prior to commit 36aa5c7ec8a2bb35f6fb867a1177a6f141156b02, the XWD codec resolves pixel format based on `pixmap_depth` but the byte-swap code uses `bits_per_pixel` independently. When `pixmap_depth=8` (BPP8_INDEXED, 1 byte/pixel buffer) but `bits_per_pixel=32`, the byte-swap loop accesses memory as `uint32_t*`, reading/writing 4x the allocated buffer size. This is a different vulnerability from the previously reported GHSA-3g38-x2pj-mv55 (CVE-2026-27168), which addressed `bytes_per_line` validation. Commit 36aa5c7ec8a2bb35f6fb867a1177a6f141156b02 contains a patch.

INFO

Published Date :

2026-04-18T01:39:48.056Z

Last Modified :

2026-04-18T01:39:48.056Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2026-40492 vulnerability.

Vendors Products
Happyseafox
  • Sail
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-40492.

URL Resource
https://github.com/HappySeaFox/sail/commit/36aa5c7ec8a2bb35f6fb867a1177a6f141156b02 cve-icon cve-icon
https://github.com/HappySeaFox/sail/security/advisories/GHSA-526v-vm72-4v64 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact