There is a heap-based buffer over-read at writer.c (function: writepngto_file) in libsixel 1.8.2 that will cause a denial of service.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_name": "libsixel-bin", "binary_version": "1.8.2-2.1" }, { "binary_name": "libsixel-bin-dbgsym", "binary_version": "1.8.2-2.1" }, { "binary_name": "libsixel-dev", "binary_version": "1.8.2-2.1" }, { "binary_name": "libsixel-examples", "binary_version": "1.8.2-2.1" }, { "binary_name": "libsixel1", "binary_version": "1.8.2-2.1" }, { "binary_name": "libsixel1-dbgsym", "binary_version": "1.8.2-2.1" } ] }