CVE-2019-19777
Published
CVSS v3
8.8
HIGH
CVSS v2
6.8
MEDIUM
Affected
1
PROJECT
Description
stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has a heap-based buffer over-read in stbi__load_main.
A SIXEL encoder/decoder implementation derived from kmiya's sixel (https://github.com/saitoha/sixel).
GitHub