CVE-2026-27168 – SAIL: Heap-based Buffer Overflow in Sail-codecs-xwd

CVE ID : CVE-2026-27168

Published : Feb. 21, 2026, 12:16 a.m. | 47 minutes ago

Description : SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles. All versions are vulnerable to Heap-based Buffer Overflow through the XWD parser’s use of the bytes_per_line value. The value os read directly from the file as the read size in io->strict_read(), and is never compared to the actual size of the destination buffer. An attacker can provide an XWD file with an arbitrarily large bytes_per_line, causing a massive write operation beyond the buffer heap allocated for the image pixels. The issue did not have a fix at the time of publication.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2026-27168 – SAIL: Heap-based Buffer Overflow in Sail-codecs-xwd

تکمیل ظرفیت سرور لهستان

سرور مناسب برای ترید و ارز دیجیتال

دیتاسنتر جدید در لهستان

سرور های جدید از اسپانیا

AMD EPYC & Ryzen از کشور انگلستان

آفر های جدید AMD EPYC و AMD Ryzen

آفر سرور اختصاصی از آمریکا

افزایش قیمت دامنه های ir از ۳۱ خرداد

افزایش قیمت جهانی دامنه .com

آفر های جدید سرور اختصاصی مرداد 1403

CVE-2026-27134 – Strimzi: All CAs from a custom CA chain consisting of multiple CAs are trusted for mTLS user autentication

سرور های جدید از روسیه-وارز

تخفیف ویژه دامنه .ASIA

ثبت دامنه .IO

انتقال رایگان پسوند دامنه PW

Kerio Control 9.2.4 Build 2223

نوشته های مشابه

CVE-2026-27203 – eBay API MCP Server Affected by Environment Variable Injection

CVE-2026-27202 – GetSimple CMS: Uploaded Files (feature) Arbitrary File Read Vulnerability

CVE-2026-27189 – OpenSift: Race-prone local persistence could cause state corruption/loss

CVE-2026-27170 – OpenSift: SSRF risk in URL ingestion endpoint