CVE-2026-40493

Name of the Vulnerable Software and Affected Versions SAIL versions prior to commit c930284445ea3ff94451ccd7a57c999eca3bc979

Description The PSD codec in this cross-platform image library for loading and saving images contains a heap buffer overflow when processing images in LAB mode. The issue occurs because the bytes-per-pixel bpp is computed from raw header fields channels * depth, while the pixel buffer is allocated based on the resolved pixel format. Specifically, for LAB mode with channels=3 and depth=16, the bpp is calculated as 6, but the BPP40 CIE LAB format allocates only 5 bytes per pixel, leading to a deterministic overflow during pixel writes on every row.

Recommendations Update to the version containing commit c930284445ea3ff94451ccd7a57c999eca3bc979.