Comments (7)
Can you try again from head ?
from timg.
Of course, I use the timg-2e9414e668144bbe0afc074dac17b74ef4acfdcf branch to compile and run the fuzz seed. There is no crash behavior.
/timg ~/Desktop/sixel/output1/crashes/2023-08-16_15:48:42_0:30:07.094816_CLI-1-AFLPP_b439ea3b32235899c6d7f67332025a82.cov
▗
Thanks . Then Can I request a CVE ?
from timg.
Fixed in v1.5.2
If you think it can be exploited, file a CVE and point to this bug and the new version as containing the fix.
from timg.
According to the Debian Security Team, this has been assigned CVE-2023-40968
from timg.
Thanks Tobi. Updated the 1.5.2 release to contain a link to upstream https://nvd.nist.gov/vuln/detail/CVE-2023-40968
Unfortunately, the original CVE mentioned 1.5.2 of being vulnerable, even though ti is the one fixing it.
from timg.
It seems that the CVE has been registered through MITRE, so they might be able to correct the version information: https://cveform.mitre.org/
from timg.
Thanks for the link.
I've submitted a request to change the description to mention v1.5.1 and before instead.
from timg.
Related Issues (20)
- carbonyl love?
- Images rendered blurry in fzf preview. HOT 2
- new version not have binary file HOT 7
- No package 'libdeflate' found HOT 2
- ipv4 vs. ipv6 HOT 5
- libsixel is not available on Fedora 38 HOT 2
- Image preview in `lf` HOT 1
- missing size parameter in iterm's protocol HOT 12
- Image viewer with scrolling HOT 3
- Detected memory leaks on timg
- Auto detect for Ghostty doesn't work HOT 8
- Cannot display certain SVG files HOT 6
- can we convert a whole video? HOT 2
- tmux passthrough for other terminals HOT 3
- Cannot read pdf in alpine container HOT 10
- Opensllde Error HOT 5
- Sixel support in foot does not get recongnized correctly HOT 8
- How about implementing [hyperlink support](https://gist.github.com/egmontkob/eb114294efbcd5adb1944c9f3cb5feda) HOT 2
- build error in termux HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from timg.