CVE-2023-45679

Published: Oct 21, 2023Modified: Nov 21, 2024

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

stb_vorbis is a single file MIT licensed library for processing ogg vorbis files. A crafted file may trigger memory allocation failure in `start_decoder`. In that case the function returns early, but some of the pointers in `f->comment_list` are left initialized and later `setup_free` is called on these pointers in `vorbis_deinit`. This issue may lead to code execution.

Affected (1)

Products: Nothings: Stb Vorbis.c

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Nothings Stb Vorbis.c	Version 1.22

Related CWEs

The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.

References (6)

https://github.com/nothings/stb/blob/5736b15f7ea0ffb08dd38af21067c314d6a3aae9/stb_vorbis.c#L3660-L3677

Source: security-advisories@github.com

Third Party Advisory

https://github.com/nothings/stb/blob/5736b15f7ea0ffb08dd38af21067c314d6a3aae9/stb_vorbis.c#L4208-L4215

Source: security-advisories@github.com

Third Party Advisory

https://securitylab.github.com/advisories/GHSL-2023-145_GHSL-2023-151_stb_image_h/

Source: security-advisories@github.com

Third Party Advisory

https://github.com/nothings/stb/blob/5736b15f7ea0ffb08dd38af21067c314d6a3aae9/stb_vorbis.c#L3660-L3677

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://github.com/nothings/stb/blob/5736b15f7ea0ffb08dd38af21067c314d6a3aae9/stb_vorbis.c#L4208-L4215

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://securitylab.github.com/advisories/GHSL-2023-145_GHSL-2023-151_stb_image_h/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.