Headline
GHSA-63p8-c4ww-9cg7: SixLabors ImageSharp Out-of-bounds Write
Impact
An Out-of-bounds Write vulnerability has been found in the ImageSharp gif decoder, allowing attackers to cause a crash using a specially crafted gif. This can potentially lead to denial of service.
Patches
The problem has been patched. All users are advised to upgrade to v3.1.5 or v2.1.9.
Workarounds
None.
References
https://github.com/SixLabors/ImageSharp/pull/2754 https://github.com/SixLabors/ImageSharp/pull/2756
SixLabors ImageSharp Out-of-bounds Write
High severity GitHub Reviewed Published Jul 22, 2024 in SixLabors/ImageSharp • Updated Jul 22, 2024