Libsixel

libsixel

4 CVEs • 1 product

Products (1)

Click to collapse

Toggle

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-40656 2Libsixel Libsixel Project 2Libsixel Libsixel Apr 24, 2026 Apr 8, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 libsixel before 1.10 is vulnerable to Buffer Overflow in libsixel/src/quant.c:867.
CVE-2021-41715 2Libsixel Libsixel Project 2Libsixel Libsixel Apr 23, 2026 Apr 8, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 libsixel 1.10.0 is vulnerable to Use after free in libsixel/src/dither.c:379.
CVE-2022-27938 3Libsixel Libsixel ProjectSaitoha 3Libsixel LibsixelLibsixel Apr 24, 2026 Mar 26, 2022 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 stb_image.h (aka the stb image loader) 2.19, as used in libsixel and other products, has a reachable assertion in stbi__create_png_image_raw.
CVE-2021-45340 2Libsixel Libsixel Project 2Libsixel Libsixel Apr 24, 2026 Jan 25, 2022 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 In Libsixel prior to and including v1.10.3, a NULL pointer dereference in the stb_image.h component of libsixel allows attackers to cause a denial of service (DOS) via a crafted PICT file.