彙總 libsixel 相關全部產品的 CVE 與安全漏洞情報,包括 CVSS、EPSS、公開時間與漏洞情報資料。
常見弱點模式包括 記憶體損壞、緩衝區溢位與拒絕服務,在 生產負載與軟體部署 使用場景中可能帶來 記憶體損壞與應用程式崩潰 等風險。
相關漏洞資料主要來源於公開漏洞披露與安全公告,可用於評估歷史漏洞暴露面與修補優先順序。
| CVE | 摘要 | 來源 | 最高 CVSS | EPSS % | 公開時間 | 更新時間 |
|---|---|---|---|---|---|---|
| CVE-2021-40656 | libsixel before 1.10 is vulnerable to Buffer Overflow in libsixel/src/quant.c:867. | [email protected] | 8.8 | 0.97% | 2022-04-08 | 2026-04-24 |
| CVE-2021-41715 | libsixel 1.10.0 is vulnerable to Use after free in libsixel/src/dither.c:379. | [email protected] | 8.8 | 0.97% | 2022-04-08 | 2026-04-23 |
| CVE-2022-27938 | stb_image.h (aka the stb image loader) 2.19, as used in libsixel and other products, has a reachable assertion in stbi__create_png_image_raw. | [email protected] | 5.5 | 0.60% | 2022-03-26 | 2026-04-24 |
| CVE-2021-45340 | In Libsixel prior to and including v1.10.3, a NULL pointer dereference in the stb_image.h component of libsixel allows attackers to cause a denial of service (DOS) via a crafted PICT file. | [email protected] | 6.5 | 0.91% | 2022-01-25 | 2026-04-24 |