CVE-2018-19763
First published: Fri Nov 30 2018(Updated: )
There is a heap-based buffer over-read at writer.c (function: write_png_to_file) in libsixel 1.8.2 that will cause a denial of service.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Libsixel Project Libsixel | =1.8.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2018-19763.
What is the title of this vulnerability?
The title of this vulnerability is 'There is a heap-based buffer over-read at writer.c (function: write_png_to_file) in libsixel 1.8.2'.
What is the severity of CVE-2018-19763?
The severity of CVE-2018-19763 is medium, with a severity value of 5.5.
What software is affected by CVE-2018-19763?
The affected software is Libsixel version 1.8.2.
How can this vulnerability be exploited?
This vulnerability can be exploited through a heap-based buffer over-read at writer.c (function: write_png_to_file) in Libsixel 1.8.2, which can lead to a denial of service.
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/type
- agent/description
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/libsixel project
- canonical/libsixel project libsixel
- version/libsixel project libsixel/1.8.2