Saitoha: >> Libsixel Security Vulnerabilities
Unverified indexs into the array lead to out of bound access in the gif_out_code function in fromgif.c in libsixel 1.8.6.
CVSS Score
6.5
EPSS Score
0.002
Published
2020-11-20
load_png in loader.c in libsixel.a in libsixel 1.8.6 has an uninitialized pointer leading to an invalid call to free, which can cause a denial of service.
CVSS Score
6.5
EPSS Score
0.005
Published
2020-04-12
libsixel 1.8.4 has an integer overflow in sixel_frame_resize in frame.c.
CVSS Score
8.8
EPSS Score
0.004
Published
2020-01-02
An issue was discovered in libsixel 1.8.4. There is a heap-based buffer overflow in the function gif_out_code at fromgif.c.
CVSS Score
8.8
EPSS Score
0.005
Published
2019-12-30
An issue was discovered in libsixel 1.8.4. There is a heap-based buffer overflow in the function gif_init_frame at fromgif.c.
CVSS Score
8.8
EPSS Score
0.005
Published
2019-12-30
A heap-based buffer overflow was discovered in image_buffer_resize in fromsixel.c in libsixel before 1.8.4.
CVSS Score
6.5
EPSS Score
0.005
Published
2019-12-27
An invalid memory address dereference was discovered in load_pnm in frompnm.c in libsixel before 1.8.3.
CVSS Score
6.5
EPSS Score
0.004
Published
2019-12-27
A memory leak was discovered in image_buffer_resize in fromsixel.c in libsixel 1.8.4.
CVSS Score
6.5
EPSS Score
0.004
Published
2019-12-27
stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has a heap-based buffer over-read in stbi__load_main.
CVSS Score
8.8
EPSS Score
0.004
Published
2019-12-13
An issue was discovered in libsixel 1.8.2. There is a heap-based buffer over-read in the function load_sixel at loader.c.
CVSS Score
8.8
EPSS Score
0.004
Published
2019-12-13