Описание
An invalid read in the stb_image.h component of libsixel prior to v1.8.5 allows attackers to cause a denial of service (DOS) via a crafted PSD file.
Ссылки
- Broken Link
- Release NotesThird Party Advisory
- PatchRelease NotesThird Party Advisory
- ExploitIssue TrackingPatchThird Party Advisory
- Release NotesThird Party Advisory
- Broken Link
- Release NotesThird Party Advisory
- PatchRelease NotesThird Party Advisory
- ExploitIssue TrackingPatchThird Party Advisory
- Release NotesThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.8.5 (исключая)
cpe:2.3:a:libsixel_project:libsixel:*:*:*:*:*:*:*:*
EPSS
Процентиль: 61%
0.00412
Низкий
6.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-125
Связанные уязвимости
CVSS3: 6.5
ubuntu
больше 4 лет назад
An invalid read in the stb_image.h component of libsixel prior to v1.8.5 allows attackers to cause a denial of service (DOS) via a crafted PSD file.
CVSS3: 6.5
debian
больше 4 лет назад
An invalid read in the stb_image.h component of libsixel prior to v1.8 ...
github
больше 3 лет назад
An invalid read in the stb_image.h component of libsixel prior to v1.8.5 allows attackers to cause a denial of service (DOS) via a crafted PSD file.
CVSS3: 6.5
fstec
больше 7 лет назад
Уязвимость компонента stb_image.h реализации кодировщика/декодера SIXEL Libsixel, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
Процентиль: 61%
0.00412
Низкий
6.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-125