CVE-2020-11721

load_png in loader.c in libsixel.a in libsixel 1.8.6 has an uninitialized pointer leading to an invalid call to free, which can cause a denial of service.

packagechannelchannel versionpkg versionstatus
libsixel
nixos-unstable
2020-05-19 15:55:23 UTC (0f5ce2)1.8.6vulnerable
2020-05-17 05:35:10 UTC (b47873)1.8.6vulnerable
2020-05-16 06:35:37 UTC (32b8ed)1.8.6vulnerable
2020-05-14 10:45:36 UTC (8ba41a)1.8.6vulnerable
2020-05-14 05:55:25 UTC (9a29fe)1.8.6vulnerable
2020-05-12 12:30:34 UTC (683c68)1.8.6vulnerable
2020-04-29 22:20:14 UTC (fce756)1.8.6vulnerable
2020-04-27 07:20:22 UTC (7c399a)1.8.6vulnerable
2020-04-21 11:50:36 UTC (22a3bf)1.8.6vulnerable
2020-04-20 18:55:24 UTC (b3c3a0)1.8.6vulnerable
2020-04-17 16:30:35 UTC (b61999)1.8.6vulnerable
2020-04-13 19:25:19 UTC (868692)1.8.6vulnerable
2020-04-13 08:25:23 UTC (81a6a8)1.8.6vulnerable
2020-04-12 06:15:29 UTC (807ca9)1.8.6vulnerable
2020-04-10 15:20:38 UTC (9b0d2f)1.8.6vulnerable
2020-04-08 01:15:40 UTC (39247f)1.8.6vulnerable
2020-03-28 20:50:45 UTC (ae6bdc)1.8.6vulnerable
2020-03-27 12:30:26 UTC (3320a0)1.8.6vulnerable
2020-03-20 13:00:27 UTC (d96bd3)1.8.6vulnerable
2020-03-19 18:00:27 UTC (ddf87f)1.8.6vulnerable
2020-03-16 23:35:45 UTC (a2e06f)1.8.6vulnerable
2020-03-14 09:30:49 UTC (0729b8)1.8.6vulnerable
2020-03-06 01:00:36 UTC (82b54d)1.8.6vulnerable
2020-03-05 14:20:38 UTC (3d6cdf)1.8.6vulnerable
2020-03-04 17:10:47 UTC (9d0fac)1.8.6vulnerable
2020-03-04 14:25:19 UTC (1459b3)1.8.6vulnerable
2020-03-01 17:10:46 UTC (42f0be)1.8.6vulnerable
2020-03-01 00:40:26 UTC (7948e6)1.8.6vulnerable
2020-02-28 18:20:26 UTC (e97dfe)1.8.6vulnerable
2020-02-28 00:35:20 UTC (57f2ea)1.8.6vulnerable
2020-02-26 17:55:29 UTC (55beed)1.8.6vulnerable
2020-02-25 22:00:40 UTC (d363be)1.8.6vulnerable
2020-02-25 01:05:18 UTC (398929)1.8.6vulnerable
2020-02-22 13:35:28 UTC (ea79a8)1.8.6vulnerable
2020-02-22 08:50:39 UTC (1ddb14)1.8.6vulnerable
2020-02-20 13:50:20 UTC (e2b4ab)1.8.6vulnerable