Описание
There is an assertion failure error in stbi__jpeg_huff_decode, stb_image.h:1894 in libsixel img2sixel 1.8.6. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted JPEG file.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libsixel | unfixed | package | ||
| libsixel | postponed | trixie | package | |
| libsixel | postponed | bookworm | package | |
| libsixel | no-dsa | bullseye | package | |
| libsixel | no-dsa | buster | package | |
| libsixel | no-dsa | stretch | package |
Примечания
https://github.com/libsixel/libsixel/issues/62
Previously also reported in https://github.com/saitoha/libsixel/issues/165
https://github.com/saitoha/libsixel/issues/165#issuecomment-3156339204
Связанные уязвимости
There is an assertion failure error in stbi__jpeg_huff_decode, stb_image.h:1894 in libsixel img2sixel 1.8.6. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted JPEG file.
There is an assertion failure error in stbi__jpeg_huff_decode, stb_image.h:1894 in libsixel img2sixel 1.8.6. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted JPEG file.
There is an assertion failure error in stbi__jpeg_huff_decode, stb_image.h:1894 in libsixel img2sixel 1.8.6. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted JPEG file.