Description

SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles. Prior to commit 45d48d1f2e8e0d73e80bc1fd5310cb57f4547302, the TGA codec's RLE decoder in `tga.c` has an asymmetric bounds check vulnerability. The run-packet path (line 297) correctly clamps the repeat count to the remaining buffer space, but the raw-packet path (line 305-311) has no equivalent bounds check. This allows writing up to 496 bytes of attacker-controlled data past the end of a heap buffer. Commit 45d48d1f2e8e0d73e80bc1fd5310cb57f4547302 patches the issue.

INFO

Published Date :

2026-04-18T01:42:48.830Z

Last Modified :

2026-04-18T01:42:48.830Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2026-40494 vulnerability.

Vendors Products
Happyseafox
  • Sail
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-40494.

URL Resource
https://github.com/HappySeaFox/sail/commit/45d48d1f2e8e0d73e80bc1fd5310cb57f4547302 cve-icon cve-icon
https://github.com/HappySeaFox/sail/security/advisories/GHSA-cp2j-rwh4-r46f cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact