CVE-2025-52930

Name of the Vulnerable Software and Affected Versions: SAIL Image Decoding Library version 0.9.8

Description: A memory corruption issue exists in the BMPv3 RLE Decoding functionality. A heap-based buffer overflow can occur when decompressing image data from a specially crafted .bmp file, potentially leading to remote code execution. An attacker needs to convince the library to read a malicious file to trigger this issue.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.