Vulnerabilities > CVE-2023-45678 - Out-of-bounds Write vulnerability in Nothings STB Vorbis.C 1.22

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

nothings

CWE-787

NVD

Published: 2023-10-21

Updated: 2023-10-26

Summary

stb_vorbis is a single file MIT licensed library for processing ogg vorbis files. A crafted file may trigger out of buffer write in `start_decoder` because at maximum `m->submaps` can be 16 but `submap_floor` and `submap_residue` are declared as arrays of 15 elements. This issue may lead to code execution.

Vulnerable Configurations

Part	Description	Count
Application	Nothings Nothings STB Vorbis.C 1.22	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://github.com/nothings/stb/blob/5736b15f7ea0ffb08dd38af21067c314d6a3aae9/stb_vorbis.c#L4074-L4079
https://github.com/nothings/stb/blob/5736b15f7ea0ffb08dd38af21067c314d6a3aae9/stb_vorbis.c#L753-L760
https://securitylab.github.com/advisories/GHSL-2023-145_GHSL-2023-151_stb_image_h/