Libsixel Project: >> Libsixel Security Vulnerabilities
An issue was discovered in libsixel 1.8.4. There is a heap-based buffer overflow in the function gif_init_frame at fromgif.c.
CVSS Score
8.8
EPSS Score
0.005
Published
2019-12-30
A heap-based buffer overflow was discovered in image_buffer_resize in fromsixel.c in libsixel before 1.8.4.
CVSS Score
6.5
EPSS Score
0.005
Published
2019-12-27
An invalid memory address dereference was discovered in load_pnm in frompnm.c in libsixel before 1.8.3.
CVSS Score
6.5
EPSS Score
0.004
Published
2019-12-27
A memory leak was discovered in image_buffer_resize in fromsixel.c in libsixel 1.8.4.
CVSS Score
6.5
EPSS Score
0.004
Published
2019-12-27
stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has a heap-based buffer over-read in stbi__load_main.
CVSS Score
8.8
EPSS Score
0.003
Published
2019-12-13
An issue was discovered in libsixel 1.8.2. There is a heap-based buffer over-read in the function load_sixel at loader.c.
CVSS Score
8.8
EPSS Score
0.003
Published
2019-12-13
An issue was discovered in libsixel 1.8.2. There is an integer overflow in the function sixel_decode_raw_impl at fromsixel.c.
CVSS Score
9.8
EPSS Score
0.004
Published
2019-12-08
An issue was discovered in libsixel 1.8.2. There is a heap-based buffer overflow in the function load_pnm at frompnm.c, due to an integer overflow.
CVSS Score
9.8
EPSS Score
0.005
Published
2019-12-08
An issue was discovered in libsixel 1.8.2. There is a heap-based buffer overflow in the function sixel_decode_raw_impl at fromsixel.c.
CVSS Score
9.8
EPSS Score
0.005
Published
2019-12-08
An issue was discovered in libsixel 1.8.2. There is an integer overflow in the function sixel_encode_body at tosixel.c.
CVSS Score
9.8
EPSS Score
0.004
Published
2019-12-08