CVE-2026-3145 in libvipsinformación

Resumen

por MITRE • 2026-02-25

A flaw has been found in libvips up to 8.18.0. The affected element is the function vips_foreign_load_matrix_file_is_a/vips_foreign_load_matrix_header of the file libvips/foreign/matrixload.c. Executing a manipulation can lead to memory corruption. The attack needs to be launched locally. This patch is called d4ce337c76bff1b278d7085c3c4f4725e3aa6ece. A patch should be applied to remediate this issue.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

VulDB

Divulgación

2026-02-25

Moderación

aceptado

Artículo

VDB-347651

CPE

listo

CWE

CWE-119 (confirmado)

CVSS

5.3 (VulDB)

EPSS

0.00020

KEV

Actividades

muy bajo

Fuentes

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-3145
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-3145
CVE Details	https://www.cvedetails.com/cve/CVE-2026-3145/

◂ Anterior Visión De Conjunto Próximo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!