|
4071
|
7.8 |
HIGH
Local
|
saitoha
|
libsixel
|
Se encontró una vulnerabilidad en saitoha libsixel hasta la versión 1.10.3. Este problema afecta a la función sixel_debug_print_palette del archivo src/encoder.c del componente img2sixel. La manipula…
|
CWE-119
CWE-121
CWE-787
Incorrect Access of Indexable Resource ('Range Error')
Stack-based Buffer Overflow
Out-of-bounds Write
|
CVE-2025-9300
|
2026-04-24 22:44 |
2025-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4072
|
8.8 |
HIGH
Local
|
packagekit_project
|
packagekit
|
PackageKit is a a D-Bus abstraction layer that allows the user to manage packages in a secure way using a cross-distro, cross-architecture API. PackageKit between and including versions 1.0.2 and 1.3…
|
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2026-41651
|
2026-04-24 22:43 |
2026-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4073
|
7.5 |
HIGH
Network
|
coturn_project
|
coturn
|
Coturn is a free open source implementation of TURN and STUN Server. Prior to 4.10.0, the STUN/TURN attribute parsing functions in coturn perform unsafe pointer casts from uint8_t * to uint16_t * wit…
|
CWE-704
Incorrect Type Conversion or Cast
|
CVE-2026-40613
|
2026-04-24 22:41 |
2026-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4074
|
7.5 |
HIGH
Network
|
protocol
|
libp2p
|
libp2p-rust is the official rust language Implementation of the libp2p networking stack. Prior to 0.17.1, libp2p-rendezvous server has no limit on how many namespaces a single peer can register. A m…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2026-35405
|
2026-04-24 22:37 |
2026-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4075
|
6.5 |
MEDIUM
Network
|
libsixel
|
libsixel
|
In Libsixel prior to and including v1.10.3, a NULL pointer dereference in the stb_image.h component of libsixel allows attackers to cause a denial of service (DOS) via a crafted PICT file.
|
CWE-476
NULL Pointer Dereference
|
CVE-2021-45340
|
2026-04-24 22:35 |
2022-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4076
|
6.5 |
MEDIUM
Network
|
libsixel
|
libsixel
|
En Libsixel versiones anteriores a v1.10.3 incluyéndola, una desreferencia de puntero NULL en el componente stb_image.h de libsixel permite a atacantes causar una denegación de servicio (DOS) por med…
|
CWE-476
NULL Pointer Dereference
|
CVE-2021-45340
|
2026-04-24 22:35 |
2022-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4077
|
8.8 |
HIGH
Network
|
libsixel
|
libsixel
|
libsixel before 1.10 is vulnerable to Buffer Overflow in libsixel/src/quant.c:867.
|
CWE-787
Out-of-bounds Write
|
CVE-2021-40656
|
2026-04-24 22:34 |
2022-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4078
|
8.8 |
HIGH
Network
|
libsixel
|
libsixel
|
libsixel versiones anteriores a 1.10, es vulnerable a un desbordamiento del búfer en libsixel/src/quant.c:867
|
CWE-787
Out-of-bounds Write
|
CVE-2021-40656
|
2026-04-24 22:34 |
2022-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4079
|
6.5 |
MEDIUM
Network
|
saitoha
|
libsixel
|
An invalid read in the stb_image.h component of libsixel prior to v1.8.5 allows attackers to cause a denial of service (DOS) via a crafted PSD file.
|
CWE-125
Out-of-bounds Read
|
CVE-2020-21049
|
2026-04-24 22:34 |
2021-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
4080
|
6.5 |
MEDIUM
Network
|
saitoha
|
libsixel
|
Una lectura no válida en el componente stb_image.h de libsixel versiones anteriores a v1.8.5, permite a atacantes causar una denegación de servicio (DOS) por medio de un archivo PSD diseñado
|
CWE-125
Out-of-bounds Read
|
CVE-2020-21049
|
2026-04-24 22:34 |
2021-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
