CVE-2022-29977

Published: May 11, 2022Modified: Apr 24, 2026

6.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

There is an assertion failure error in stbi__jpeg_huff_decode, stb_image.h:1894 in libsixel img2sixel 1.8.6. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted JPEG file.

Affected (1)

Products: Saitoha: Libsixel

Saitoha

1 product

Libsixel

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Saitoha Libsixel	Version 1.8.6

Related CWEs

CWE-617

Reachable Assertion

The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

References (2)

https://github.com/saitoha/libsixel/issues/165

Source: cve@mitre.org

ExploitIssue TrackingThird Party Advisory

https://github.com/saitoha/libsixel/issues/165

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitIssue TrackingThird Party Advisory

Timeline

No history available yet.