2475408 – (CVE-2026-42046) CVE-2026-42046 libcaca: libcaca: Remote Code Execution via crafted "caca" format file

Bug 2475408 (CVE-2026-42046) - CVE-2026-42046 libcaca: libcaca: Remote Code Execution via crafted "caca" format file

Summary: CVE-2026-42046 libcaca: libcaca: Remote Code Execution via crafted "caca" for...

Keywords:
Status:	NEW
Alias:	CVE-2026-42046
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	---
Assignee:	Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2481172 2481173
Blocks:
TreeView+	depends on / blocked

Reported:	2026-05-11 22:08 UTC by OSIDB Bzimport
Modified:	2026-05-25 11:19 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2026-05-11 22:08:07 UTC

libcaca is a colour ASCII art library. In 0.99.beta20 and earlier, an integer overflow vulnerability in libcaca's canvas import functionality allows an attacker to cause a controlled heap out-of-bounds write (heap overflow) by supplying a crafted file in the "caca" format. Depending on the build configuration and memory allocator, this may lead to memory corruption or remote code execution. This is the same vulnerability as CVE-2021-3410 but the fix at that time was not fully correct. Commit fb77acff9ba6bb01d53940da34fb10f20b156a23 fixes this vulnerability.

Note You need to log in before you can comment on or make changes to this bug.