Product:

Libsixel

(Libsixel_project)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 41
Date Id Summary Products Score Patch Annotated
2020-11-20 CVE-2020-19668 Unverified indexs into the array lead to out of bound access in the gif_out_code function in fromgif.c in libsixel 1.8.6. Libsixel 6.5
2021-04-14 CVE-2020-36120 Buffer Overflow in the "sixel_encoder_encode_bytes" function of Libsixel v1.8.6 allows attackers to cause a Denial of Service (DoS). Libsixel 7.5
2021-08-10 CVE-2020-21677 A heap-based buffer overflow in the sixel_encoder_output_without_macro function in encoder.c of Libsixel 1.8.4 allows attackers to cause a denial of service (DOS) via converting a crafted PNG file into Sixel format. Libsixel 6.5
2021-09-14 CVE-2020-21048 An issue in the dither.c component of libsixel prior to v1.8.4 allows attackers to cause a denial of service (DOS) via a crafted PNG file. Libsixel 6.5
2021-09-14 CVE-2020-21049 An invalid read in the stb_image.h component of libsixel prior to v1.8.5 allows attackers to cause a denial of service (DOS) via a crafted PSD file. Libsixel 6.5
2021-09-14 CVE-2020-21050 Libsixel prior to v1.8.3 contains a stack buffer overflow in the function gif_process_raster at fromgif.c. Libsixel 6.5
2021-09-17 CVE-2020-21547 Libsixel 1.8.2 contains a heap-based buffer overflow in the dither_func_fs function in tosixel.c. Libsixel 8.8
2021-09-17 CVE-2020-21548 Libsixel 1.8.3 contains a heap-based buffer overflow in the sixel_encode_highcolor function in tosixel.c. Libsixel 8.8
2022-01-25 CVE-2021-45340 In Libsixel prior to and including v1.10.3, a NULL pointer dereference in the stb_image.h component of libsixel allows attackers to cause a denial of service (DOS) via a crafted PICT file. Libsixel 6.5
2022-02-19 CVE-2021-46700 In libsixel 1.8.6, sixel_encoder_output_without_macro (called from sixel_encoder_encode_frame in encoder.c) has a double free. Libsixel 6.5