CVE-2020-21050
Summary
| CVE | CVE-2020-21050 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2021-09-14 16:15:00 UTC |
|---|
| Updated | 2022-09-20 20:56:00 UTC |
|---|
| Description | Libsixel prior to v1.8.3 contains a stack buffer overflow in the function gif_process_raster at fromgif.c. |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| 404 — Bitbucket |
MISC |
bitbucket.org |
|
| CWE -
CWE-121: Stack-based Buffer Overflow (4.3) |
MISC |
cwe.mitre.org |
|
| Release v1.8.5 security update · saitoha/libsixel · GitHub |
MISC |
github.com |
|
| AddressSanitizer: stack-buffer-overflow at fromgif.c:310 · Issue #75 · saitoha/libsixel · GitHub |
MISC |
github.com |
|
| gif loader: check LZW code size (Issue #75) · saitoha/libsixel@7808a06 · GitHub |
MISC |
github.com |
|
| libsixel/ChangeLog at master · saitoha/libsixel · GitHub |
MISC |
github.com |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 180634 Debian Security Update for libsixel (CVE-2020-21050)
