Vulnerability Details CVE-2019-19777
stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has a heap-based buffer over-read in stbi__load_main.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 52.1%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.8
References
Products affected by CVE-2019-19777
-
cpe:2.3:a:libsixel_project:libsixel:1.8.2
-
cpe:2.3:a:nothings:stb_image.h:2.23