Vulnerabilities > Nothings

DATE CVE VULNERABILITY TITLE RISK
2023-10-21 CVE-2023-45678 Out-of-bounds Write vulnerability in Nothings STB Vorbis.C 1.22
stb_vorbis is a single file MIT licensed library for processing ogg vorbis files.
local
low complexity
nothings CWE-787
7.8
7.8
2023-10-21 CVE-2023-45679 Double Free vulnerability in Nothings STB Vorbis.C 1.22
stb_vorbis is a single file MIT licensed library for processing ogg vorbis files.
local
low complexity
nothings CWE-415
7.8
7.8
2023-10-21 CVE-2023-45680 NULL Pointer Dereference vulnerability in Nothings STB Vorbis.C 1.22
stb_vorbis is a single file MIT licensed library for processing ogg vorbis files.
local
low complexity
nothings CWE-476
5.5
5.5
2023-10-21 CVE-2023-45681 Integer Overflow or Wraparound vulnerability in Nothings STB Vorbis.C 1.22
stb_vorbis is a single file MIT licensed library for processing ogg vorbis files.
local
low complexity
nothings CWE-190
7.8
7.8
2023-10-21 CVE-2023-45682 Out-of-bounds Read vulnerability in Nothings STB Vorbis.C 1.22
stb_vorbis is a single file MIT licensed library for processing ogg vorbis files.
local
low complexity
nothings CWE-125
7.1
7.1
2023-10-03 CVE-2023-43898 NULL Pointer Dereference vulnerability in Nothings STB Image.H 2.28
Nothings stb 2.28 was discovered to contain a Null Pointer Dereference via the function stbi__convert_format.
local
low complexity
nothings CWE-476
5.5
5.5
2022-04-15 CVE-2022-28041 Integer Overflow or Wraparound vulnerability in multiple products
stb_image.h v2.27 was discovered to contain an integer overflow via the function stbi__jpeg_decode_block_prog_dc.
network
low complexity
nothings fedoraproject debian CWE-190
6.5
6.5
2022-04-15 CVE-2022-28042 Use After Free vulnerability in multiple products
stb_image.h v2.27 was discovered to contain an heap-based use-after-free via the function stbi__jpeg_huff_decode.
network
low complexity
nothings fedoraproject debian CWE-416
8.8
8.8
2022-03-17 CVE-2022-25514 Out-of-bounds Write vulnerability in Nothings STB Truetype.H 1.26
stb_truetype.h v1.26 was discovered to contain a heap-buffer-overflow via the function ttUSHORT() at stb_truetype.h.
network
low complexity
nothings CWE-787
7.5
7.5
2022-03-17 CVE-2022-25515 Out-of-bounds Write vulnerability in Nothings STB Truetype.H 1.26
stb_truetype.h v1.26 was discovered to contain a heap-buffer-overflow via the function ttULONG() at stb_truetype.h.
network
low complexity
nothings CWE-787
6.5
6.5