libsixel.so is vulnerable to NULL pointer dereference. The vulnerability exists in stbi__convert_format
in stb_image.h
because the output is never checked for NULL when passed in from stbi__pic_load
which leads to an overflow causing an application crash.
CPE | Name | Operator | Version |
---|---|---|---|
libsixel.so | le | 1.0.6 | |
libsixel.so | le | 1.0.6 |
github.com/advisories/GHSA-7xr9-9g9p-xmfp
github.com/libsixel/libsixel/commit/924895c7ef79a1fcbbd04eb397ea38635539ad51#
github.com/libsixel/libsixel/commit/e6d658d6275f73d60c9392b7a3e66050bbe7ac9b
github.com/libsixel/libsixel/issues/51
github.com/libsixel/libsixel/pull/52
github.com/saitoha/libsixel/issues/160