In libsixel v1.8.2, there is a heap-based buffer over-read in the function load_jpeg() in the file loader.c, as demonstrated by img2sixel.
References
Link | Resource |
---|---|
https://github.com/TeamSeri0us/pocs/tree/master/libsixel | Exploit Third Party Advisory |
https://github.com/saitoha/libsixel/issues/83 | Exploit Third Party Advisory |
Configurations
Information
Published : 2019-01-02 07:29
Updated : 2020-08-24 10:37
NVD link : CVE-2019-3574
Mitre link : CVE-2019-3574
JSON object : View
CWE
CWE-125
Out-of-bounds Read
Products Affected
libsixel_project
- libsixel