Cyber Resilience

CVE-2026-44636

High

Published: 14 May 2026

Published
14 May 2026
Modified
16 May 2026
KEV Added
Patch
CVSS Score v3.1 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0001 2.9th percentile
Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2026-44636 is a high-severity Heap-based Buffer Overflow (CWE-122) vulnerability in Saitoha Libsixel. Its CVSS base score is 7.4 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Client Execution (T1203); ranked at the 2.9th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, signed integer overflow in sixel_encode_highcolor's allocation size calculation can lead to a heap buffer overflow. The public sixel_encode entry point validates only that width and height are…

more

greater than zero, with no upper bound. width and height are multiplied as plain int when computing the allocation size for paletted_pixels and normalized_pixels. Any caller that asks libsixel to encode a pixel buffer with width times height greater than INT_MAX (about 2.15 billion) will hit a wrapped allocation size; under the right wrap, the malloc succeeds with a buffer much smaller than the encoder expects, and the encoder writes past the end of the heap allocation. This vulnerability is fixed in 1.8.7-r2.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1203 Exploitation for Client Execution Execution
Adversaries may exploit software vulnerabilities in client applications to execute code.
Why these techniques?

Heap buffer overflow from integer overflow in image encoding library enables client-side exploitation for code execution.

Confidence: MEDIUM · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2026-33020Same product: Saitoha Libsixel
CVE-2026-44637Same product: Saitoha Libsixel
CVE-2026-33023Same product: Saitoha Libsixel
CVE-2026-33019Same product: Saitoha Libsixel
CVE-2026-33021Same product: Saitoha Libsixel
CVE-2026-42046Shared CWE-122, CWE-190
CVE-2025-21339Shared CWE-122
CVE-2025-59295Shared CWE-122
CVE-2025-21407Shared CWE-122
CVE-2026-34545Shared CWE-122, CWE-190

Affected Assets

saitoha
libsixel
1.4.4 — 1.8.7-r2

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References