Vulnerabilities > Libsixel Project > Libsixel > 1.8.6

DATE CVE VULNERABILITY TITLE RISK
2022-05-11 CVE-2022-29977 Reachable Assertion vulnerability in Libsixel Project Libsixel 1.8.6
There is an assertion failure error in stbi__jpeg_huff_decode, stb_image.h:1894 in libsixel img2sixel 1.8.6.
network
low complexity
libsixel-project CWE-617
6.5
2022-05-11 CVE-2022-29978 Incorrect Calculation vulnerability in Libsixel Project Libsixel 1.8.6
There is a floating point exception error in sixel_encoder_do_resize, encoder.c:633 in libsixel img2sixel 1.8.6.
network
low complexity
libsixel-project CWE-682
6.5
2022-04-08 CVE-2021-40656 Out-of-bounds Write vulnerability in Libsixel Project Libsixel
libsixel before 1.10 is vulnerable to Buffer Overflow in libsixel/src/quant.c:867.
network
low complexity
libsixel-project CWE-787
8.8
2022-04-08 CVE-2022-27044 Out-of-bounds Write vulnerability in Libsixel Project Libsixel 1.8.6
libsixel 1.8.6 is affected by Buffer Overflow in libsixel/src/quant.c:876.
network
low complexity
libsixel-project CWE-787
8.8
2022-04-08 CVE-2022-27046 Use After Free vulnerability in Libsixel Project Libsixel 1.8.6
libsixel 1.8.6 suffers from a Heap Use After Free vulnerability in in libsixel/src/dither.c:388.
network
low complexity
libsixel-project CWE-416
8.8
2022-02-19 CVE-2021-46700 Double Free vulnerability in Libsixel Project Libsixel 1.8.6
In libsixel 1.8.6, sixel_encoder_output_without_macro (called from sixel_encoder_encode_frame in encoder.c) has a double free.
network
low complexity
libsixel-project CWE-415
6.5
2022-01-25 CVE-2021-45340 NULL Pointer Dereference vulnerability in Libsixel Project Libsixel
In Libsixel prior to and including v1.10.3, a NULL pointer dereference in the stb_image.h component of libsixel allows attackers to cause a denial of service (DOS) via a crafted PICT file.
network
low complexity
libsixel-project CWE-476
6.5
2021-04-14 CVE-2020-36120 Classic Buffer Overflow vulnerability in Libsixel Project Libsixel 1.8.6
Buffer Overflow in the "sixel_encoder_encode_bytes" function of Libsixel v1.8.6 allows attackers to cause a Denial of Service (DoS).
network
low complexity
libsixel-project CWE-120
7.5
2020-11-20 CVE-2020-19668 Out-of-bounds Read vulnerability in Libsixel Project Libsixel 1.8.6
Unverified indexs into the array lead to out of bound access in the gif_out_code function in fromgif.c in libsixel 1.8.6.
network
low complexity
libsixel-project CWE-125
6.5
2020-04-12 CVE-2020-11721 Access of Uninitialized Pointer vulnerability in Libsixel Project Libsixel 1.8.6
load_png in loader.c in libsixel.a in libsixel 1.8.6 has an uninitialized pointer leading to an invalid call to free, which can cause a denial of service.
network
low complexity
libsixel-project CWE-824
6.5