EUVD-2026-8604

🗓️ 25 Feb 2026 03:30:58Reported by EUVDType

Libvips 8.18.0 and earlier: local null pointer in matrix header loader; patch d4ce337c76bff1b278d7085c3c4f4725e3aa6ece.

Reporter	Title	Published	Views	Family All 17
ATTACKERKB	CVE-2026-3146	25 Feb 202603:02	–	attackerkb
Chainguard	CVE-2026-3146 vulnerabilities	4 Mar 202613:17	–	cgr
CNNVD	libvips 安全漏洞	25 Feb 202600:00	–	cnnvd
CVE	CVE-2026-3146	25 Feb 202603:02	–	cve
Cvelist	CVE-2026-3146 libvips matrixload.c vips_foreign_load_matrix_header null pointer dereference	25 Feb 202603:02	–	cvelist
Debian CVE	CVE-2026-3146	25 Feb 202603:02	–	debiancve
NVD	CVE-2026-3146	25 Feb 202603:16	–	nvd
OSV	CGA-45G6-3Q9P-WWFH	4 Mar 202612:00	–	osv
OSV	DEBIAN-CVE-2026-3146	25 Feb 202603:16	–	osv
OSV	UBUNTU-CVE-2026-3146	25 Feb 202603:16	–	osv

[
  {
    "enisaIdVendor": [
      {
        "id": "d3c137d3-ce03-43b8-b207-aac09de78efd",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "0e55dc89-340c-4b3d-a4cb-9a06eca76945",
        "product": {
          "name": "libvips"
        },
        "product_version": "8.9"
      },
      {
        "id": "10713720-d19f-4f4f-93e5-40cd5440077a",
        "product": {
          "name": "libvips"
        },
        "product_version": "8.13"
      },
      {
        "id": "14af7d4c-3362-4945-a783-c733e013940b",
        "product": {
          "name": "libvips"
        },
        "product_version": "8.14"
      },
      {
        "id": "1f1d3b26-4997-41c5-975e-ddf67682e7d8",
        "product": {
          "name": "libvips"
        },
        "product_version": "8.6"
      },
      {
        "id": "29bb8f39-43a5-420e-ba63-79b52c311841",
        "product": {
          "name": "libvips"
        },
        "product_version": "8.7"
      },
      {
        "id": "390920c2-600d-4446-98db-440a1767ffca",
        "product": {
          "name": "libvips"
        },
        "product_version": "8.3"
      },
      {
        "id": "4c035a51-d7fe-49e1-81ac-f10a429d456d",
        "product": {
          "name": "libvips"
        },
        "product_version": "8.5"
      },
      {
        "id": "51c577cd-4ed1-49cb-b849-c5a1d2fc96df",
        "product": {
          "name": "libvips"
        },
        "product_version": "8.18.0"
      },
      {
        "id": "6e15e176-7bec-42dd-9fb1-44de1a0d8222",
        "product": {
          "name": "libvips"
        },
        "product_version": "8.12"
      },
      {
        "id": "714a3566-e6a8-44cb-9162-e71e41fc5952",
        "product": {
          "name": "libvips"
        },
        "product_version": "8.17"
      },
      {
        "id": "74efed50-d26d-4a01-b160-9859b60eb0ed",
        "product": {
          "name": "libvips"
        },
        "product_version": "8.8"
      },
      {
        "id": "9cce55dd-7d58-4500-8aa4-933cda447664",
        "product": {
          "name": "libvips"
        },
        "product_version": "8.4"
      },
      {
        "id": "ba4e92d3-23b6-4dfd-ac23-ad4171dbbee4",
        "product": {
          "name": "libvips"
        },
        "product_version": "8.2"
      },
      {
        "id": "c00bb6b0-f9ea-47fc-a971-2f9b2938cab0",
        "product": {
          "name": "libvips"
        },
        "product_version": "8.11"
      },
      {
        "id": "cbdd1a12-42e8-4bda-8768-116df1d1d2db",
        "product": {
          "name": "libvips"
        },
        "product_version": "8.0"
      },
      {
        "id": "cefa34af-1737-4776-ac4c-830856e2d525",
        "product": {
          "name": "libvips"
        },
        "product_version": "8.10"
      },
      {
        "id": "d832f7d9-76b0-46dd-aeac-8428151a5ba8",
        "product": {
          "name": "libvips"
        },
        "product_version": "8.16"
      },
      {
        "id": "ea3795a6-c284-492d-9da9-842e247305a3",
        "product": {
          "name": "libvips"
        },
        "product_version": "8.15"
      },
      {
        "id": "fc6f183f-5ee4-4e27-91e5-e50a7f297e13",
        "product": {
          "name": "libvips"
        },
        "product_version": "8.1"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
github	www.github.com/libvips/libvips/issues/4875
github	www.github.com/libvips/libvips/pull/4888
github	www.github.com/libvips/libvips/commit/d4ce337c76bff1b278d7085c3c4f4725e3aa6ece
github	www.github.com/libvips/libvips/
nvd	www.nvd.nist.gov/vuln/detail/CVE-2026-3146

25 Feb 2026 03:30Current

4.9Medium risk

Vulners AI Score4.9

CVSS 44.8

CVSS 3.13.3 - 5.5

CVSS 21.7

CVSS 33.3

EPSS0.00167

SSVC