Описание
libsixel 1.8.6 suffers from a Heap Use After Free vulnerability in in libsixel/src/dither.c:388.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libsixel | fixed | 1.10.3-1 | package | |
| libsixel | no-dsa | bullseye | package | |
| libsixel | no-dsa | buster | package | |
| libsixel | no-dsa | stretch | package |
Примечания
https://github.com/saitoha/libsixel/issues/157
https://github.com/libsixel/libsixel/issues/27
https://github.com/libsixel/libsixel/pull/28
Fixed by: https://github.com/libsixel/libsixel/commit/d299d67c532a5133a57aade5c35ff8e612c73dd8 (v1.10.1)
EPSS
Процентиль: 56%
0.00332
Низкий
Связанные уязвимости
CVSS3: 8.8
ubuntu
почти 4 года назад
libsixel 1.8.6 suffers from a Heap Use After Free vulnerability in in libsixel/src/dither.c:388.
CVSS3: 8.8
nvd
почти 4 года назад
libsixel 1.8.6 suffers from a Heap Use After Free vulnerability in in libsixel/src/dither.c:388.
CVSS3: 8.8
github
почти 4 года назад
libsixel 1.8.6 suffers from a Heap Use After Free vulnerability in in libsixel/src/dither.c:388.
EPSS
Процентиль: 56%
0.00332
Низкий