Vulnerabilities > CVE-2020-21677 - Out-of-bounds Write vulnerability in Libsixel Project Libsixel 1.8.4

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL

Summary

A heap-based buffer overflow in the sixel_encoder_output_without_macro function in encoder.c of Libsixel 1.8.4 allows attackers to cause a denial of service (DOS) via converting a crafted PNG file into Sixel format.

Vulnerable Configurations

Part Description Count
Application
Libsixel_Project
1

Common Weakness Enumeration (CWE)