libsixel buffer overflow vulnerability (CNVD-2020-22975)

libsixel is a package that provides encoding/decoding implementations for DEC SIXEL graphics and other converter programs. A security vulnerability exists in the 'loadpng' function of the libsixel.a library in libsixel version 1.8.6. An attacker can exploit this vulnerability to cause a denial of...

CVE-2020-11721

loadpng in loader.c in libsixel.a in libsixel 1.8.6 has an uninitialized pointer leading to an invalid call to free, which can cause a denial of service...

CVE-2020-11721

loadpng in loader.c in libsixel.a in libsixel 1.8.6 has an uninitialized pointer leading to an invalid call to free, which can cause a denial of service...

CVE-2020-11721

loadpng in loader.c in libsixel.a in libsixel 1.8.6 has an uninitialized pointer leading to an invalid call to free, which can cause a denial of service...

UBUNTU-CVE-2020-11721

loadpng in loader.c in libsixel.a in libsixel 1.8.6 has an uninitialized pointer leading to an invalid call to free, which can cause a denial of service...

CVE-2020-11721

loadpng in loader.c in libsixel.a in libsixel 1.8.6 has an uninitialized pointer leading to an invalid call to free, which can cause a denial of service...

CVE-2020-11721

CVE-2020-11721 affects libsixel 1.8.6. The issue is a load_png path in loader.c that uses an uninitialized pointer, leading to an invalid free and potential denial of service. PTSecurity advisories indicate updates to 1.8.4+ to fix related heap/array processing issues; ALT Linux notes a 1.10.3-al...