Known Vulnerabilities for Libsixel by Libsixel Project
Listed below are 10 of the newest known vulnerabilities associated with "Libsixel" by "Libsixel Project".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-41715 | libsixel 1.10.0 is vulnerable to Use after free in libsixel/src/dither.c:379. | 8.8 - HIGH | 2022-04-08 | 2022-04-14 |
| CVE-2021-40656 | libsixel before 1.10 is vulnerable to Buffer Overflow in libsixel/src/quant.c:867. | 8.8 - HIGH | 2022-04-08 | 2022-04-14 |
| CVE-2020-21677 | A heap-based buffer overflow in the sixel_encoder_output_without_macro function in encoder.c of Libsixel 1.8.4 allows attacke... | 6.5 - MEDIUM | 2021-08-10 | 2021-08-17 |
| CVE-2020-21548 | Libsixel 1.8.3 contains a heap-based buffer overflow in the sixel_encode_highcolor function in tosixel.c. | 8.8 - HIGH | 2021-09-17 | 2021-09-29 |
| CVE-2020-21547 | Libsixel 1.8.2 contains a heap-based buffer overflow in the dither_func_fs function in tosixel.c. | 8.8 - HIGH | 2021-09-17 | 2021-09-29 |
| CVE-2020-21050 | Libsixel prior to v1.8.3 contains a stack buffer overflow in the function gif_process_raster at fromgif.c. | 6.5 - MEDIUM | 2021-09-14 | 2022-09-20 |
| CVE-2020-21049 | An invalid read in the stb_image.h component of libsixel prior to v1.8.5 allows attackers to cause a denial of service (DOS) ... | 6.5 - MEDIUM | 2021-09-14 | 2021-09-24 |
| CVE-2020-21048 | An issue in the dither.c component of libsixel prior to v1.8.4 allows attackers to cause a denial of service (DOS) via a craf... | 6.5 - MEDIUM | 2021-09-14 | 2021-09-24 |
| CVE-2020-19668 | Unverified indexs into the array lead to out of bound access in the gif_out_code function in fromgif.c in libsixel 1.8.6. | 6.5 - MEDIUM | 2020-11-20 | 2021-07-21 |
| CVE-2020-11721 | load_png in loader.c in libsixel.a in libsixel 1.8.6 has an uninitialized pointer leading to an invalid call to free, which c... | 6.5 - MEDIUM | 2020-04-12 | 2020-04-13 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Libsixel Project | Libsixel | 1.8.6 | All | All | All |
| Application | Libsixel Project | Libsixel | 1.8.4 | All | All | All |
| Application | Libsixel Project | Libsixel | 1.8.3 | All | All | All |
| Application | Libsixel Project | Libsixel | 1.8.2 | All | All | All |
| Application | Libsixel Project | Libsixel | 1.8.1 | All | All | All |
| Application | Libsixel Project | Libsixel | 1.8.0 | All | All | All |
| Application | Libsixel Project | Libsixel | 1.7.3 | All | All | All |
| Application | Libsixel Project | Libsixel | 1.7.2 | All | All | All |
| Application | Libsixel Project | Libsixel | 1.7.1 | All | All | All |
| Application | Libsixel Project | Libsixel | 1.7.0 | All | All | All |
| Application | Libsixel Project | Libsixel | 1.6.1 | All | All | All |
| Application | Libsixel Project | Libsixel | 1.6.0 | All | All | All |
| Application | Libsixel Project | Libsixel | 1.5.3 | All | All | All |
| Application | Libsixel Project | Libsixel | 1.5.2 | All | All | All |
| Application | Libsixel Project | Libsixel | 1.5.1 | All | All | All |
| Application | Libsixel Project | Libsixel | 1.5.0 | All | All | All |
| Application | Libsixel Project | Libsixel | 1.4.9 | All | All | All |
| Application | Libsixel Project | Libsixel | 1.4.8 | All | All | All |
| Application | Libsixel Project | Libsixel | 1.4.7 | All | All | All |
| Application | Libsixel Project | Libsixel | 1.4.6 | All | All | All |