CVE-2026-3145 | libvips up to 8.18.0 matrixload.c memory corruption (Issue 4876)

A vulnerability, which was classified as critical, was found in libvips up to 8.18.0. The affected element is the function vips_foreign_load_matrix_file_is_a/vips_foreign_load_matrix_header of the file libvips/foreign/matrixload.c. Executing a manipulation can lead to memory corruption.

This vulnerability is registered as CVE-2026-3145. The attack needs to be launched locally. No exploit is available.

A patch should be applied to remediate this issue.VulDB Recent EntriesRead More