Vulnerabilities > Nothings > STB Image H > High

DATE CVE VULNERABILITY TITLE RISK
2023-10-21 CVE-2023-45661 Out-of-bounds Read vulnerability in Nothings STB Image.H 2.28
stb_image is a single file MIT licensed library for processing images.
local
low complexity
nothings CWE-125
7.1
7.1
2023-10-21 CVE-2023-45662 Out-of-bounds Read vulnerability in Nothings STB Image.H 2.28
stb_image is a single file MIT licensed library for processing images.
network
low complexity
nothings CWE-125
8.1
8.1
2023-10-21 CVE-2023-45664 Double Free vulnerability in Nothings STB Image.H 2.28
stb_image is a single file MIT licensed library for processing images.
network
low complexity
nothings CWE-415
8.8
8.8
2023-10-21 CVE-2023-45667 NULL Pointer Dereference vulnerability in Nothings STB Image.H 2.28
stb_image is a single file MIT licensed library for processing images. If `stbi__load_gif_main` in `stbi_load_gif_from_memory` fails it returns a null pointer and may keep the `z` variable uninitialized.
network
low complexity
nothings CWE-476
7.5
7.5
2022-04-15 CVE-2022-28042 Use After Free vulnerability in multiple products
stb_image.h v2.27 was discovered to contain an heap-based use-after-free via the function stbi__jpeg_huff_decode.
network
low complexity
nothings fedoraproject debian CWE-416
8.8
8.8
2021-10-21 CVE-2021-42716 Classic Buffer Overflow vulnerability in multiple products
An issue was discovered in stb stb_image.h 2.27.
local
low complexity
nothings fedoraproject CWE-120
7.1
7.1
2018-09-12 CVE-2018-16981 Out-of-bounds Write vulnerability in multiple products
stb stb_image.h 2.19, as used in catimg, Emscripten, and other products, has a heap-based buffer overflow in the stbi__out_gif_code function.
network
low complexity
nothings debian CWE-787
8.8
8.8