CVE-2021-45340

Опубликовано: 25 янв. 2022

Источник: nvd

CVSS3: 6.5

CVSS2: 4.3

EPSS Низкий

Описание

In Libsixel prior to and including v1.10.3, a NULL pointer dereference in the stb_image.h component of libsixel allows attackers to cause a denial of service (DOS) via a crafted PICT file.

Ссылки

https://github.com/libsixel/libsixel/issues/51
Exploit
Issue Tracking
Patch
Third Party Advisory
https://github.com/libsixel/libsixel/issues/51
Exploit
Issue Tracking
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:libsixel_project:libsixel:*:*:*:*:*:*:*:*

Версия до 1.10.3 (включая)

EPSS

Процентиль: 37%

0.00163

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-476

Связанные уязвимости

CVE-2021-45340

CVSS3: 6.5

ubuntu

около 4 лет назад

In Libsixel prior to and including v1.10.3, a NULL pointer dereference in the stb_image.h component of libsixel allows attackers to cause a denial of service (DOS) via a crafted PICT file.

CVE-2021-45340

CVSS3: 6.5

debian

около 4 лет назад

In Libsixel prior to and including v1.10.3, a NULL pointer dereference ...

GHSA-7xr9-9g9p-xmfp

github

около 4 лет назад

In Libsixel prior to and including v1.10.3, a NULL pointer dereference in the stb_image.h component of libsixel allows attackers to cause a denial of service (DOS) via a crafted PICT file.

EPSS

Процентиль: 37%

0.00163

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-476