8 matches found
DEBIAN-CVE-2026-44637
libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a signed integer overflow in the SIXEL parser's image-buffer doubling loop can lead to an out-of-bounds heap write in sixeldecoderawimpl. context-posx grows by repeatcount on every sixel character wit...
CVE-2026-33020
libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. Versions 1.8.7 and prior contain an integer overflow which leads to a heap buffer overflow via sixelframeconverttorgb888 in frame.c, where allocation size and pointer offset computations for palettised images PAL1, PAL...
CVE-2026-33018
libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. Versions 1.8.7 and prior contain a Use-After-Free vulnerability via the loadgif function in fromgif.c, where a single sixelframet object is reused across all frames of an animated GIF and gifinitframe unconditionally...
CVE-2026-33018 libsixel: Use-After-Free in load_gif()
libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. Versions 1.8.7 and prior contain a Use-After-Free vulnerability via the loadgif function in fromgif.c, where a single sixelframet object is reused across all frames of an animated GIF and gifinitframe unconditionally...
The vulnerability in the stb_image.h component of the SIXEL Libsixel encoder/decoder library for C/C++ Libstb allows a attacker to cause a service failure.
The vulnerability of the stbimage.h component in the SIXEL Libsixel encoder/decoder library for C/C++ Libstb is related to the insufficient use of the assert function. Exploiting this vulnerability allows a malicious actor to cause service failures...
The vulnerability in the dither.c component of the SIXEL Libsixel encoder/decoder implementation allows a attacker to cause a service failure.
The vulnerability of the dither.c component in the SIXEL Libsixel encoder/decoder implementation is related to errors during resource release. Exploiting this vulnerability allows a remote attacker to cause service interruptions using a specially created PNG file...
The vulnerability of the gif_process_raster function in the fromgif.c component of the SIXEL Libsixel encoder/decoder implementation allows a attacker to cause a service failure.
The vulnerability of the gifprocessraster function in the fromgif.c component of the SIXEL Libsixel encoder/decoder implementation is related to the output of the operation beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to cause a service failure...
UBUNTU-CVE-2018-14072
libsixel 1.8.1 has a memory leak in sixeldecoderdecode in decoder.c, imagebufferresize in fromsixel.c, and sixeldecoderaw in fromsixel.c...