Nothings

nothings

42 CVEs • 3 products

Products (3)

Click to collapse

Toggle

CVEs (42)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-45664 1Nothings 1Stb Image.h Nov 21, 2024 Oct 21, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 stb_image is a single file MIT licensed library for processing images. A crafted image file can trigger `stbi__load_gif_main_outofmem` attempt to double-free the out variable. This happens in `stbi__load_gif_main` becaus...Show more stb_image is a single file MIT licensed library for processing images. A crafted image file can trigger `stbi__load_gif_main_outofmem` attempt to double-free the out variable. This happens in `stbi__load_gif_main` because when the `layers * stride` value is zero the behavior is implementation defined, but common that realloc frees the old memory and returns null pointer. Since it attempts to double-free the memory a few lines below the first “free”, the issue can be potentially exploited only in a multi-threaded environment. In the worst case this may lead to code execution.Show less
CVE-2023-45663 1Nothings 1Stb Image.h Nov 21, 2024 Oct 21, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 stb_image is a single file MIT licensed library for processing images. The stbi__getn function reads a specified number of bytes from context (typically a file) into the specified buffer. In case the file stream points t...Show more stb_image is a single file MIT licensed library for processing images. The stbi__getn function reads a specified number of bytes from context (typically a file) into the specified buffer. In case the file stream points to the end, it returns zero. There are two places where its return value is not checked: In the `stbi__hdr_load` function and in the `stbi__tga_load` function. The latter of the two is likely more exploitable as an attacker may also control the size of an uninitialized buffer.Show less
CVE-2023-45662 1Nothings 1Stb Image.h Nov 21, 2024 Oct 21, 2023 N/A· v4 8.1 HIGH· v3 N/A· v2 stb_image is a single file MIT licensed library for processing images. When `stbi_set_flip_vertically_on_load` is set to `TRUE` and `req_comp` is set to a number that doesn’t match the real number of components per pixel...Show more stb_image is a single file MIT licensed library for processing images. When `stbi_set_flip_vertically_on_load` is set to `TRUE` and `req_comp` is set to a number that doesn’t match the real number of components per pixel, the library attempts to flip the image vertically. A crafted image file can trigger `memcpy` out-of-bounds read because `bytes_per_pixel` used to calculate `bytes_per_row` doesn’t match the real image array dimensions.Show less
CVE-2023-45661 1Nothings 1Stb Image.h Nov 21, 2024 Oct 21, 2023 N/A· v4 7.1 HIGH· v3 N/A· v2 stb_image is a single file MIT licensed library for processing images. A crafted image file may trigger out of bounds memcpy read in `stbi__gif_load_next`. This happens because two_back points to a memory address lower t...Show more stb_image is a single file MIT licensed library for processing images. A crafted image file may trigger out of bounds memcpy read in `stbi__gif_load_next`. This happens because two_back points to a memory address lower than the start of the buffer out. This issue may be used to leak internal memory allocation information.Show less
CVE-2023-43898 1Nothings 1Stb Image.h Jun 17, 2025 Oct 3, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Nothings stb 2.28 was discovered to contain a Null Pointer Dereference via the function stbi__convert_format. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted pic file.
CVE-2022-28042 3Debian FedoraprojectNothings 3Debian Linux FedoraStb Image.h Nov 21, 2024 Apr 15, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 stb_image.h v2.27 was discovered to contain an heap-based use-after-free via the function stbi__jpeg_huff_decode.
CVE-2022-28041 3Debian FedoraprojectNothings 3Debian Linux FedoraStb Image.h Nov 21, 2024 Apr 15, 2022 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 stb_image.h v2.27 was discovered to contain an integer overflow via the function stbi__jpeg_decode_block_prog_dc. This vulnerability allows attackers to cause a Denial of Service (DoS) via unspecified vectors.
CVE-2022-25516 1Nothings 1Stb Truetype.h Nov 21, 2024 Mar 17, 2022 N/A· v4 6.5 MEDIUM· v3 5.0 MEDIUM· v2 stb_truetype.h v1.26 was discovered to contain a heap-buffer-overflow via the function stbtt__find_table at stb_truetype.h. NOTE: Third party has disputed stating that the source code has also a disclaimer that it should...Show more stb_truetype.h v1.26 was discovered to contain a heap-buffer-overflow via the function stbtt__find_table at stb_truetype.h. NOTE: Third party has disputed stating that the source code has also a disclaimer that it should only be used with trusted input.Show less
CVE-2022-25515 1Nothings 1Stb Truetype.h Nov 21, 2024 Mar 17, 2022 N/A· v4 6.5 MEDIUM· v3 5.0 MEDIUM· v2 stb_truetype.h v1.26 was discovered to contain a heap-buffer-overflow via the function ttULONG() at stb_truetype.h. NOTE: Third party has disputed stating that the source code has also a disclaimer that it should only be...Show more stb_truetype.h v1.26 was discovered to contain a heap-buffer-overflow via the function ttULONG() at stb_truetype.h. NOTE: Third party has disputed stating that the source code has also a disclaimer that it should only be used with trusted input.Show less
CVE-2022-25514 1Nothings 1Stb Truetype.h Nov 21, 2024 Mar 17, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 stb_truetype.h v1.26 was discovered to contain a heap-buffer-overflow via the function ttUSHORT() at stb_truetype.h. NOTE: Third party has disputed stating that the source code has also a disclaimer that it should only b...Show more stb_truetype.h v1.26 was discovered to contain a heap-buffer-overflow via the function ttUSHORT() at stb_truetype.h. NOTE: Third party has disputed stating that the source code has also a disclaimer that it should only be used with trusted input.Show less
CVE-2021-42716 2Fedoraproject Nothings 2Fedora Stb Image.h Nov 21, 2024 Oct 21, 2021 N/A· v4 7.1 HIGH· v3 5.8 MEDIUM· v2 An issue was discovered in stb stb_image.h 2.27. The PNM loader incorrectly interpreted 16-bit PGM files as 8-bit when converting to RGBA, leading to a buffer overflow when later reinterpreting the result as a 16-bit buf...Show more An issue was discovered in stb stb_image.h 2.27. The PNM loader incorrectly interpreted 16-bit PGM files as 8-bit when converting to RGBA, leading to a buffer overflow when later reinterpreting the result as a 16-bit buffer. An attacker could potentially have crashed a service using stb_image, or read up to 1024 bytes of non-consecutive heap data without control over the read location.Show less
CVE-2021-42715 3Debian FedoraprojectNothings 3Debian Linux FedoraStb Image.h Nov 21, 2024 Oct 21, 2021 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in stb stb_image.h 1.33 through 2.27. The HDR loader parsed truncated end-of-file RLE scanlines as an infinite sequence of zero-length runs. An attacker could potentially have caused denial of ser...Show more An issue was discovered in stb stb_image.h 1.33 through 2.27. The HDR loader parsed truncated end-of-file RLE scanlines as an infinite sequence of zero-length runs. An attacker could potentially have caused denial of service in applications using stb_image by submitting crafted HDR files.Show less
CVE-2020-6623 1Nothings 1Stb Truetype.h Nov 21, 2024 Jan 8, 2020 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 stb stb_truetype.h through 1.22 has an assertion failure in stbtt__cff_get_index.
CVE-2020-6622 1Nothings 1Stb Truetype.h Nov 21, 2024 Jan 8, 2020 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__buf_peek8.
CVE-2020-6621 1Nothings 1Stb Truetype.h Nov 21, 2024 Jan 8, 2020 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 stb stb_truetype.h through 1.22 has a heap-based buffer over-read in ttUSHORT.
CVE-2020-6620 1Nothings 1Stb Truetype.h Nov 21, 2024 Jan 8, 2020 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__buf_get8.
CVE-2020-6619 1Nothings 1Stb Truetype.h Nov 21, 2024 Jan 8, 2020 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 stb stb_truetype.h through 1.22 has an assertion failure in stbtt__buf_seek.
CVE-2020-6618 1Nothings 1Stb Truetype.h Nov 21, 2024 Jan 8, 2020 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__find_table.
CVE-2020-6617 1Nothings 1Stb Truetype.h Nov 21, 2024 Jan 8, 2020 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 stb stb_truetype.h through 1.22 has an assertion failure in stbtt__cff_int.
CVE-2019-20056 1Nothings 1Stb Image.h Nov 21, 2024 Dec 29, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has an assertion failure in stbi__shiftsigned.

Previous 123 Next