2466496 – (CVE-2026-42144) CVE-2026-42144 CImg: integer overflow in PNM size check bypasses memory guard (_load_pnm)

Bug 2466496 (CVE-2026-42144) - CVE-2026-42144 CImg: integer overflow in PNM size check bypasses memory guard (_load_pnm)

Summary: CVE-2026-42144 CImg: integer overflow in PNM size check bypasses memory guard...

Keywords:
Status:	NEW
Alias:	CVE-2026-42144
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2476569 2476570 2476571 2476572 2476573
Blocks:
TreeView+	depends on / blocked

Reported:	2026-05-04 19:02 UTC by OSIDB Bzimport
Modified:	2026-05-12 17:58 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2026-05-04 19:02:13 UTC

CImg Library is a C++ library for image processing. Prior to commit 4ca26bc, there is an integer overflow vulnerability in the W*H*D size computation inside _load_pnm() that can bypass the memory allocation guard. A crafted PNM/PGM/PPM file with large dimension values causes the overflow to wrap around, allocating an undersized buffer and potentially triggering a heap buffer overflow. Any application using CImg to load untrusted image files is affected. This issue has been patched via commit 4ca26bc.

Note You need to log in before you can comment on or make changes to this bug.