Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-63p8-c4ww-9cg7: SixLabors ImageSharp Out-of-bounds Write

Impact

An Out-of-bounds Write vulnerability has been found in the ImageSharp gif decoder, allowing attackers to cause a crash using a specially crafted gif. This can potentially lead to denial of service.

Patches

The problem has been patched. All users are advised to upgrade to v3.1.5 or v2.1.9.

Workarounds

None.

References

https://github.com/SixLabors/ImageSharp/pull/2754 https://github.com/SixLabors/ImageSharp/pull/2756

ghsa
#vulnerability#dos#git

SixLabors ImageSharp Out-of-bounds Write

High severity GitHub Reviewed Published Jul 22, 2024 in SixLabors/ImageSharp • Updated Jul 22, 2024

ghsa: Latest News

GHSA-6jrf-rcjf-245r: changedetection.io path traversal using file URI scheme without supplying hostname