[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2026-40492":6},{"stargazers_count":4,"fetched_at":5},5,"2026-04-19T02:14:11.276Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":26,"related":27,"reserved_at":9,"published_at":28,"modified_at":28,"state":29,"summary":30,"references_raw":39,"kevs":51,"epss":52,"epss_history":55,"metrics":57,"affected":64},"CVE-2026-40492","SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles. Prior to commit 36aa5c7ec8a2bb35f6fb867a1177a6f141156b02, the XWD codec resolves pixel format based on `pixmap_depth` but the byte-swap code uses `bits_per_pixel` independently. When `pixmap_depth=8` (BPP8_INDEXED, 1 byte/pixel buffer) but `bits_per_pixel=32`, the byte-swap loop accesses memory as `uint32_t*`, reading/writing 4x the allocated buffer size. This is a different vulnerability from the previously reported GHSA-3g38-x2pj-mv55 (CVE-2026-27168), which addressed `bytes_per_line` validation. Commit 36aa5c7ec8a2bb35f6fb867a1177a6f141156b02 contains a patch.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-787","Out-of-bounds Write","The product writes data past the end, or before the beginning, of the intended buffer.","weakness","Draft","Base","High",[],[],[],[],[24],{"_key":25},"DEBIAN-CVE-2026-40492",[],[],"2026-04-18T01:39:48.056Z","Received",{"cisa_kev":31,"cisa_ransomware":31,"cisa_vendor":9,"epss_severity":32,"epss_score":33,"severity":34,"severity_score":35,"severity_version":36,"severity_source":37,"severity_vector":38,"severity_status":29},false,"low",0.00043,"critical",9.8,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",[40,46],{"url":41,"sources":42,"tags":44},"https://github.com/HappySeaFox/sail/security/advisories/GHSA-526v-vm72-4v64",[37,43],"nvd",[45],"X Refsource CONFIRM",{"url":47,"sources":48,"tags":49},"https://github.com/HappySeaFox/sail/commit/36aa5c7ec8a2bb35f6fb867a1177a6f141156b02",[37,43],[50],"X Refsource MISC",[],{"date":53,"score":33,"percentile":54},"2026-04-18",0.12905,[56],{"date":53,"score":33,"percentile":54},[58,62],{"source":37,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":59,"cvss_v4_0":9},{"baseScore":35,"baseSeverity":60,"vectorString":38,"impactScore":35,"exploitabilityScore":61},"CRITICAL",10,{"source":43,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":63,"cvss_v4_0":9},{"baseScore":35,"baseSeverity":60,"vectorString":38,"impactScore":35,"exploitabilityScore":61},[65],{"ecosystem":9,"name":66,"vendor":67,"product":66,"cpe_part":68,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":69},"sail","happyseafox","a",[70],{"version":71,"is_range":72,"range_type":37,"version_start":9,"version_start_type":9,"version_end":73,"version_end_type":74,"fixed_in":9},"\u003C 36aa5c7ec8a2bb35f6fb867a1177a6f141156b02",true,"36aa5c7ec8a2bb35f6fb867a1177a6f141156b02","excluding"]