Vulnerabilities > Nothings > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-21 | CVE-2023-45682 | Out-of-bounds Read vulnerability in Nothings STB Vorbis.C 1.22 stb_vorbis is a single file MIT licensed library for processing ogg vorbis files. | 7.1 |
| 2022-04-15 | CVE-2022-28042 | Use After Free vulnerability in multiple products stb_image.h v2.27 was discovered to contain an heap-based use-after-free via the function stbi__jpeg_huff_decode. | 8.8 |
| 2022-03-17 | CVE-2022-25514 | Out-of-bounds Write vulnerability in Nothings STB Truetype.H 1.26 stb_truetype.h v1.26 was discovered to contain a heap-buffer-overflow via the function ttUSHORT() at stb_truetype.h. | 7.5 |
| 2021-10-21 | CVE-2021-42716 | Classic Buffer Overflow vulnerability in multiple products An issue was discovered in stb stb_image.h 2.27. | 7.1 |
| 2020-01-08 | CVE-2020-6623 | Reachable Assertion vulnerability in Nothings STB Truetype.H 1.22 stb stb_truetype.h through 1.22 has an assertion failure in stbtt__cff_get_index. | 8.8 |
| 2020-01-08 | CVE-2020-6622 | Out-of-bounds Read vulnerability in Nothings STB Truetype.H 1.22 stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__buf_peek8. | 8.8 |
| 2020-01-08 | CVE-2020-6621 | Out-of-bounds Read vulnerability in Nothings STB Truetype.H 1.22 stb stb_truetype.h through 1.22 has a heap-based buffer over-read in ttUSHORT. | 8.8 |
| 2020-01-08 | CVE-2020-6620 | Out-of-bounds Read vulnerability in Nothings STB Truetype.H 1.22 stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__buf_get8. | 8.8 |
| 2020-01-08 | CVE-2020-6619 | Reachable Assertion vulnerability in Nothings STB Truetype.H 1.22 stb stb_truetype.h through 1.22 has an assertion failure in stbtt__buf_seek. | 8.8 |
| 2020-01-08 | CVE-2020-6618 | Out-of-bounds Read vulnerability in Nothings STB Truetype.H 1.22 stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__find_table. | 8.8 |