CVE-2026-42046

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2026-42046
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-42046.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2026-42046
Aliases
  • GHSA-4vvg-vrqv-m56w
Downstream
Related
Published
2026-05-11T21:23:35.259Z
Modified
2026-06-24T18:29:42.937613306Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
Summary
libcaca: Heap OOB write in canvas import functions caused by int overflow
Details

libcaca is a colour ASCII art library. In 0.99.beta20 and earlier, an integer overflow vulnerability in libcaca's canvas import functionality allows an attacker to cause a controlled heap out-of-bounds write (heap overflow) by supplying a crafted file in the "caca" format. Depending on the build configuration and memory allocator, this may lead to memory corruption or remote code execution. This is the same vulnerability as CVE-2021-3410 but the fix at that time was not fully correct. Commit fb77acff9ba6bb01d53940da34fb10f20b156a23 fixes this vulnerability.

Database specific 
{
    "cwe_ids": [
        "CWE-122",
        "CWE-190",
        "CWE-787"
    ],
    "cna_assigner": "GitHub_M",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/42xxx/CVE-2026-42046.json"
}
References

Affected packages

Git / github.com/cacalabs/libcaca

Affected ranges

Type
GIT
Repo
https://github.com/cacalabs/libcaca
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
fb77acff9ba6bb01d53940da34fb10f20b156a23
Database specific 
{
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "0.99.beta20"
        }
    ],
    "source": [
        "AFFECTED_FIELD",
        "REFERENCES"
    ]
}

Affected versions

v0.*
v0.99.beta14
v0.99.beta15
v0.99.beta16
v0.99.beta17
v0.99.beta18
v0.99.beta19
v0.99.beta20

Database specific

vanir_signatures 
[
    {
        "id": "CVE-2026-42046-01de3c83",
        "signature_version": "v1",
        "target": {
            "file": "caca/canvas.c",
            "function": "caca_resize"
        },
        "signature_type": "Function",
        "deprecated": false,
        "source": "https://github.com/cacalabs/libcaca/commit/fb77acff9ba6bb01d53940da34fb10f20b156a23",
        "digest": {
            "length": 3208.0,
            "function_hash": "211504592555671717491783633775877222640"
        }
    },
    {
        "id": "CVE-2026-42046-730f80ad",
        "signature_version": "v1",
        "target": {
            "file": "caca/canvas.c"
        },
        "signature_type": "Line",
        "deprecated": false,
        "source": "https://github.com/cacalabs/libcaca/commit/fb77acff9ba6bb01d53940da34fb10f20b156a23",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "324784550744330904474938183255649316422",
                "107762374312473325409957042984910588700",
                "278854692691872806843334991198274957892",
                "186221012985180076737919302648571425856",
                "154314540310381904787707437038839752785",
                "297699224399060512484868046720070042216",
                "266670340924107753591568554145216563239",
                "247489220920583767813034078492753894779",
                "184354336643976142687328043075565732829",
                "97986870082190329333954539794223720703",
                "238210851798345622200762354733972376089",
                "32454304449786377381729632932646726291",
                "31136932892108929499439466077632075399"
            ]
        }
    }
]
source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-42046.json"
vanir_signatures_modified 
"2026-06-18T14:30:02Z"