search

saitoha / libsixel

A SIXEL encoder/decoder implementation derived from kmiya's sixel (https://github.com/saitoha/sixel).
MIT License
2.46k stars 82 forks source link

[CVE-2018-19763] heap-based buffer over-read at writer.c (function: write_png_to_file) #82

Closed nluedtke closed 4 years ago

nluedtke commented 5 years ago

Re-posting this here to make sure you are aware.

https://nvd.nist.gov/vuln/detail/CVE-2018-19763 https://bugzilla.redhat.com/show_bug.cgi?id=1649201

fgeek commented 5 years ago

@nluedtke Thank you for your efforts. I appreciate it.

saitoha commented 4 years ago

Fix for this problem #95 is merged into v1.8.3. Thanks.