All 4 CVE vulnerabilities found in sail, with AI-generated Chinese analysis, references, and POCs.
Vendor: HappySeaFox
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-40494 | SAIL has heap buffer overflow in TGA RLE decoder — raw packet path missing bounds check CWE-787 | 9.8 | Critical | 2026-04-18 |
| CVE-2026-40493 | SAIL has heap buffer overflow in PSD decoder — bpp mismatch in LAB 16-bit mode CWE-787 | 9.8 | Critical | 2026-04-18 |
| CVE-2026-40492 | SAIL has heap buffer overflow in XWD decoder — bits_per_pixel vs pixmap_depth type confusion in byte-swap CWE-787 | 9.8 | Critical | 2026-04-18 |
| CVE-2026-27168 | SAIL: Heap-based Buffer Overflow in Sail-codecs-xwd CWE-122 | 8.8 | High | 2026-02-20 |
All 4 known CVE vulnerabilities affecting sail with full Chinese analysis, references, and POCs where available.