Vulnerabilities > Nothings > STB Image H > 2.23

DATE CVE VULNERABILITY TITLE RISK
2021-10-21 CVE-2021-42715 Infinite Loop vulnerability in multiple products
An issue was discovered in stb stb_image.h 1.33 through 2.27.
local
low complexity
nothings fedoraproject debian CWE-835
5.5
5.5
2019-12-29 CVE-2019-20056 Reachable Assertion vulnerability in Nothings STB Image.H 2.23
stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has an assertion failure in stbi__shiftsigned.
network
low complexity
nothings CWE-617
6.5
6.5
2019-12-13 CVE-2019-19777 Out-of-bounds Read vulnerability in multiple products
stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has a heap-based buffer over-read in stbi__load_main.
network
low complexity
libsixel-project nothings CWE-125
8.8
8.8