Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libsixel project libsixel vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-19636
An issue exists in libsixel 1.8.2. There is an integer overflow in the function sixel_encode_body at tosixel.c.
Libsixel Project Libsixel 1.8.2
9.8
CVSSv3
CVE-2019-19638
An issue exists in libsixel 1.8.2. There is a heap-based buffer overflow in the function load_pnm at frompnm.c, due to an integer overflow.
Libsixel Project Libsixel 1.8.2
8.8
CVSSv3
CVE-2019-19778
An issue exists in libsixel 1.8.2. There is a heap-based buffer over-read in the function load_sixel at loader.c.
Libsixel Project Libsixel 1.8.2
6.5
CVSSv3
CVE-2020-11721
load_png in loader.c in libsixel.a in libsixel 1.8.6 has an uninitialized pointer leading to an invalid call to free, which can cause a denial of service.
Libsixel Project Libsixel 1.8.6
5.5
CVSSv3
CVE-2019-3573
In libsixel v1.8.2, there is an infinite loop in the function sixel_decode_raw_impl() in the file fromsixel.c, as demonstrated by sixel2png.
Libsixel Project Libsixel 1.8.2
5.5
CVSSv3
CVE-2019-11024
The load_pnm function in frompnm.c in libsixel.a in libsixel 1.8.2 has infinite recursion.
Libsixel Project Libsixel 1.8.2
7.5
CVSSv3
CVE-2018-14072
libsixel 1.8.1 has a memory leak in sixel_decoder_decode in decoder.c, image_buffer_resize in fromsixel.c, and sixel_decode_raw in fromsixel.c.
Libsixel Project Libsixel 1.8.1
7.5
CVSSv3
CVE-2018-14073
libsixel 1.8.1 has a memory leak in sixel_allocator_new in allocator.c.
Libsixel Project Libsixel 1.8.1
5.5
CVSSv3
CVE-2022-27938
stb_image.h (aka the stb image loader) 2.19, as used in libsixel and other products, has a reachable assertion in stbi__create_png_image_raw.
Libsixel Project Libsixel 2.19
8.8
CVSSv3
CVE-2021-41715
libsixel 1.10.0 is vulnerable to Use after free in libsixel/src/dither.c:379.
Libsixel Project Libsixel 1.10.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »