Описание
stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has a heap-based buffer over-read in stbi__load_main.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libsixel | fixed | 1.8.6-1 | package | |
| libsixel | no-dsa | buster | package | |
| libsixel | no-dsa | stretch | package | |
| libsixel | no-dsa | jessie | package |
Примечания
https://github.com/saitoha/libsixel/issues/109
EPSS
Процентиль: 58%
0.0037
Низкий
Связанные уязвимости
CVSS3: 8.8
ubuntu
около 6 лет назад
stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has a heap-based buffer over-read in stbi__load_main.
CVSS3: 8.8
nvd
около 6 лет назад
stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has a heap-based buffer over-read in stbi__load_main.
github
больше 3 лет назад
stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has a heap-based buffer over-read in stbi__load_main.
EPSS
Процентиль: 58%
0.0037
Низкий