Vulnerabilities > Libsixel Project > Libsixel > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-12-30 | CVE-2019-20094 | Out-of-bounds Write vulnerability in Libsixel Project Libsixel 1.8.4 An issue was discovered in libsixel 1.8.4. | 6.8 |
| 2019-12-27 | CVE-2019-20024 | Out-of-bounds Write vulnerability in Libsixel Project Libsixel A heap-based buffer overflow was discovered in image_buffer_resize in fromsixel.c in libsixel before 1.8.4. | 4.3 |
| 2019-12-27 | CVE-2019-20023 | Missing Release of Resource after Effective Lifetime vulnerability in Libsixel Project Libsixel A memory leak was discovered in image_buffer_resize in fromsixel.c in libsixel 1.8.4. | 4.3 |
| 2019-12-27 | CVE-2019-20022 | Operation on a Resource after Expiration or Release vulnerability in Libsixel Project Libsixel An invalid memory address dereference was discovered in load_pnm in frompnm.c in libsixel before 1.8.3. | 4.3 |
| 2019-12-13 | CVE-2019-19778 | Out-of-bounds Read vulnerability in Libsixel Project Libsixel 1.8.2 An issue was discovered in libsixel 1.8.2. | 6.8 |
| 2019-12-13 | CVE-2019-19777 | Out-of-bounds Read vulnerability in multiple products stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has a heap-based buffer over-read in stbi__load_main. | 6.8 |
| 2019-04-08 | CVE-2019-11024 | Uncontrolled Recursion vulnerability in Libsixel Project Libsixel 1.8.2 The load_pnm function in frompnm.c in libsixel.a in libsixel 1.8.2 has infinite recursion. | 4.3 |
| 2019-01-02 | CVE-2019-3574 | Out-of-bounds Read vulnerability in Libsixel Project Libsixel 1.8.2 In libsixel v1.8.2, there is a heap-based buffer over-read in the function load_jpeg() in the file loader.c, as demonstrated by img2sixel. | 6.8 |
| 2019-01-02 | CVE-2019-3573 | Infinite Loop vulnerability in Libsixel Project Libsixel 1.8.2 In libsixel v1.8.2, there is an infinite loop in the function sixel_decode_raw_impl() in the file fromsixel.c, as demonstrated by sixel2png. | 4.3 |
| 2018-11-30 | CVE-2018-19763 | Out-of-bounds Read vulnerability in Libsixel Project Libsixel 1.8.2 There is a heap-based buffer over-read at writer.c (function: write_png_to_file) in libsixel 1.8.2 that will cause a denial of service. | 4.3 |