Information on source package libsixel

Available versions

ReleaseVersion
jessie1.1.2-1
stretch1.5.2-2+deb9u1
buster1.8.2-1+deb10u1
bullseye1.8.6-1
sid1.8.6-1

Open issues

BugjessiestretchbusterbullseyesidDescription
CVE-2019-3574vulnerable (no DSA)fixedfixedfixedfixedIn libsixel v1.8.2, there is a heap-based buffer over-read in the func ...
CVE-2019-3573vulnerable (no DSA, postponed)fixedfixedfixedfixedIn libsixel v1.8.2, there is an infinite loop in the function sixel_de ...
CVE-2019-20205vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedlibsixel 1.8.4 has an integer overflow in sixel_frame_resize in frame. ...
CVE-2019-20140vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in libsixel 1.8.4. There is a heap-based buffe ...
CVE-2019-20094vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in libsixel 1.8.4. There is a heap-based buffe ...
CVE-2019-20056vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedstb_image.h (aka the stb image loader) 2.23, as used in libsixel and o ...
CVE-2019-20024vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedA heap-based buffer overflow was discovered in image_buffer_resize in ...
CVE-2019-20023vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedA memory leak was discovered in image_buffer_resize in fromsixel.c in ...
CVE-2019-20022vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn invalid memory address dereference was discovered in load_pnm in fr ...
CVE-2019-19778vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in libsixel 1.8.2. There is a heap-based buffe ...
CVE-2019-19777vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedstb_image.h (aka the stb image loader) 2.23, as used in libsixel and o ...
CVE-2019-19638vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in libsixel 1.8.2. There is a heap-based buffe ...
CVE-2019-19637vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in libsixel 1.8.2. There is an integer overflo ...
CVE-2019-19636vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in libsixel 1.8.2. There is an integer overflo ...
CVE-2019-19635vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in libsixel 1.8.2. There is a heap-based buffe ...
CVE-2018-19761vulnerable (no DSA)fixedfixedfixedfixedThere is an illegal address access at fromsixel.c (function: sixel_dec ...
CVE-2018-19759vulnerable (no DSA)fixedfixedfixedfixedThere is a heap-based buffer over-read at stb_image_write.h (function: ...
CVE-2018-19757vulnerable (no DSA)fixedfixedfixedfixedThere is a NULL pointer dereference at function sixel_helper_set_addit ...
CVE-2018-14073vulnerable (no DSA, postponed)fixedfixedfixedfixedlibsixel 1.8.1 has a memory leak in sixel_allocator_new in allocator.c ...
CVE-2018-14072vulnerable (no DSA, postponed)fixedfixedfixedfixedlibsixel 1.8.1 has a memory leak in sixel_decoder_decode in decoder.c, ...

Open unimportant issues

BugjessiestretchbusterbullseyesidDescription
CVE-2019-11024vulnerablevulnerablevulnerablefixedfixedThe load_pnm function in frompnm.c in libsixel.a in libsixel 1.8.2 has ...

Resolved issues

BugDescription
CVE-2018-19763There is a heap-based buffer over-read at writer.c (function: write_pn ...
CVE-2018-19762There is a heap-based buffer overflow at fromsixel.c (function: image_ ...
CVE-2018-19756There is a heap-based buffer over-read at stb_image.h (function: stbi_ ...

Search for package or bug name: Reporting problems