汇总 libsixel 相关全部产品的 CVE 与安全漏洞情报,包括 CVSS、EPSS、公开时间与漏洞情报数据。
常见弱点模式包括 内存损坏、缓冲区溢出与拒绝服务,在 生产负载与软件部署 使用场景中可能带来 内存损坏与应用崩溃 等风险。
相关漏洞数据主要来源于公开漏洞披露与安全公告,可用于评估历史漏洞暴露面与修复优先级。
| CVE | 摘要 | 来源 | 最高 CVSS | EPSS % | 公开时间 | 更新时间 |
|---|---|---|---|---|---|---|
| CVE-2021-40656 | libsixel before 1.10 is vulnerable to Buffer Overflow in libsixel/src/quant.c:867. | [email protected] | 8.8 | 0.97% | 2022-04-08 | 2026-04-24 |
| CVE-2021-41715 | libsixel 1.10.0 is vulnerable to Use after free in libsixel/src/dither.c:379. | [email protected] | 8.8 | 0.97% | 2022-04-08 | 2026-04-23 |
| CVE-2022-27938 | stb_image.h (aka the stb image loader) 2.19, as used in libsixel and other products, has a reachable assertion in stbi__create_png_image_raw. | [email protected] | 5.5 | 0.60% | 2022-03-26 | 2026-04-24 |
| CVE-2021-45340 | In Libsixel prior to and including v1.10.3, a NULL pointer dereference in the stb_image.h component of libsixel allows attackers to cause a denial of service (DOS) via a crafted PICT file. | [email protected] | 6.5 | 0.91% | 2022-01-25 | 2026-04-24 |