ALT Linux Team

Package libsixel update in sisyphus on 2025-01-21

ALT-PU-2025-1604-2

Package libsixel updated to version 1.10.5-alt1 for branch sisyphus in task 370655.

Closed vulnerabilities

Published: 2022-01-25
Modified: 2024-11-21

CVE-2021-45340

In Libsixel prior to and including v1.10.3, a NULL pointer dereference in the stb_image.h component of libsixel allows attackers to cause a denial of service (DOS) via a crafted PICT file.

Severity: MEDIUM (6.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
References:
VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.0
Back to top