PT-2022-12903 · Libsixel+1 · Libsixel+1
P870613
·
Published
2022-02-19
·
Updated
2022-03-01
·
CVE-2021-46700
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
libsixel version 1.8.6
Description
The issue is related to a double free error in the
sixel encoder output without macro function, which is called from sixel encoder encode frame in encoder.c.Recommendations
For libsixel version 1.8.6, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Double Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Debian
Libsixel