Описание
There is a heap-based buffer overflow at fromsixel.c (function: image_buffer_resize) in libsixel 1.8.2 that will cause a denial of service or possibly unspecified other impact.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libsixel | fixed | 1.8.2-2 | package | |
| libsixel | fixed | 1.8.2-1+deb10u1 | buster | package |
| libsixel | fixed | 1.5.2-2+deb9u1 | stretch | package |
| libsixel | not-affected | jessie | package |
Примечания
https://github.com/saitoha/libsixel/issues/81
https://bugzilla.redhat.com/show_bug.cgi?id=1649199 (reproducer)
EPSS
Связанные уязвимости
There is a heap-based buffer overflow at fromsixel.c (function: image_buffer_resize) in libsixel 1.8.2 that will cause a denial of service or possibly unspecified other impact.
There is a heap-based buffer overflow at fromsixel.c (function: image_buffer_resize) in libsixel 1.8.2 that will cause a denial of service or possibly unspecified other impact.
There is a heap-based buffer overflow at fromsixel.c (function: image_buffer_resize) in libsixel 1.8.2 that will cause a denial of service or possibly unspecified other impact.
EPSS