Out-of-bounds Write in SixLabors ImageSharp

ImageSharp is a 2D graphics API. An Out-of-bounds Write vulnerability has been found in the ImageSharp gif decoder, allowing attackers to cause a crash using a specially crafted gif. This can potentially lead to denial of service. The problem has been patched. All users are advised to upgrade to v3.1.7 or v2.1.10.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

跨界内存写

ImageSharp 缓冲区错误漏洞

ImageSharp是Six Labors开源的一款全新的、功能齐全、管理全面、跨平台的二维图形 API。 ImageSharp v3.1.7和v2.1.10之前版本存在缓冲区错误漏洞，该漏洞源于gif解码器存在越界写入漏洞，可能导致崩溃或拒绝服务。

N/A

N/A