CVE-2020-21677
Published
CVSS v3
6.5
MEDIUM
CVSS v2
4.3
MEDIUM
Affected
1
PROJECT
Description
A heap-based buffer overflow in the sixel_encoder_output_without_macro function in encoder.c of Libsixel 1.8.4 allows attackers to cause a denial of service (DOS) via converting a crafted PNG file into Sixel format.
A SIXEL encoder/decoder implementation derived from kmiya's sixel (https://github.com/saitoha/sixel).
GitHub