CVE-2026-44636

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, signed integer overflow in sixelencodehighcolor's allocation size calculation can lead to a heap buffer overflow. The public sixelencode entry point validates only that width and height are greater th...

CVE-2026-44638

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a wrong NULL check after an allocation call in sixeldecoderaw and sixeldecode causes a NULL pointer dereference whenever the allocation fails. The check tests the address of the output parameter alway...

Linux Distros Unpatched Vulnerability : CVE-2026-33018

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. Versions 1.8.7 and prior contain a Use-After-Free vulnerability via the loadgif...

CVE-2026-33018

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. Versions 1.8.7 and prior contain a Use-After-Free vulnerability via the loadgif function in fromgif.c, where a single sixelframet object is reused across all frames of an animated GIF and gifinitframe unconditionally...

EUVD-2026-22742

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. Versions 1.8.7 and prior contain an integer overflow leading to an out-of-bounds heap read in the --crop option handling of img2sixel, where positive coordinates up to INTMAX are accepted without overflow-safe bounds...

libsixel 输入验证错误漏洞

Libsixel is a software package developed by Hayaki Saito, which provides encoding/decoding implementations for DEC SIXEL graphics and other conversion programs. Versions of Libsixel 1.8.7 and earlier contained a vulnerability related to input validation errors. This vulnerability stemmed from...

CVE-2018-19759

There is a heap-based buffer over-read at stbimagewrite.h function: stbiwritepngtomem in libsixel 1.8.2 that will cause a denial of service...

CVE-2019-20022

An invalid memory address dereference was discovered in loadpnm in frompnm.c in libsixel before 1.8.3...

CVE-2019-20024

A heap-based buffer overflow was discovered in imagebufferresize in fromsixel.c in libsixel before 1.8.4...

CVE-2022-27046

libsixel 1.8.6 suffers from a Heap Use After Free vulnerability in in libsixel/src/dither.c:388...

EUVD-2019-9247

Malware in sbrugna...

EUVD-2019-10759

Malware in sbrugna...

EUVD-2019-9376

Malware in sbrugna...

EUVD-2018-11445

Malware in sbrugna...

EUVD-2018-11441

Malware in sbrugna...

EUVD-2021-28727

Malicious code in bioql PyPI...

EUVD-2021-27830

Malicious code in bioql PyPI...

EUVD-2022-34284

Malicious code in bioql PyPI...

EUVD-2021-33360

Malicious code in bioql PyPI...

EUVD-2022-31584

Malicious code in bioql PyPI...