Heap buffer overflow in libwebp allow a remote attacker to perform an out of bounds memory write via a crafted HTML page.
"https://github.com/pypa/advisory-database/blob/main/vulns/pillow/PYSEC-2026-1794.yaml"