Vulnerabilities > Nothings > STB Truetype H > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-03-17 CVE-2022-25515 Out-of-bounds Write vulnerability in Nothings STB Truetype.H 1.26
stb_truetype.h v1.26 was discovered to contain a heap-buffer-overflow via the function ttULONG() at stb_truetype.h.
network
low complexity
nothings CWE-787
6.5
2022-03-17 CVE-2022-25516 Out-of-bounds Write vulnerability in Nothings STB Truetype.H 1.26
stb_truetype.h v1.26 was discovered to contain a heap-buffer-overflow via the function stbtt__find_table at stb_truetype.h.
network
low complexity
nothings CWE-787
6.5
2020-01-08 CVE-2020-6623 Reachable Assertion vulnerability in Nothings STB Truetype.H 1.22
stb stb_truetype.h through 1.22 has an assertion failure in stbtt__cff_get_index.
network
nothings CWE-617
6.8
2020-01-08 CVE-2020-6622 Out-of-bounds Read vulnerability in Nothings STB Truetype.H 1.22
stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__buf_peek8.
network
nothings CWE-125
6.8
2020-01-08 CVE-2020-6621 Out-of-bounds Read vulnerability in Nothings STB Truetype.H 1.22
stb stb_truetype.h through 1.22 has a heap-based buffer over-read in ttUSHORT.
network
nothings CWE-125
6.8
2020-01-08 CVE-2020-6620 Out-of-bounds Read vulnerability in Nothings STB Truetype.H 1.22
stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__buf_get8.
network
nothings CWE-125
6.8
2020-01-08 CVE-2020-6619 Reachable Assertion vulnerability in Nothings STB Truetype.H 1.22
stb stb_truetype.h through 1.22 has an assertion failure in stbtt__buf_seek.
network
nothings CWE-617
6.8
2020-01-08 CVE-2020-6618 Out-of-bounds Read vulnerability in Nothings STB Truetype.H 1.22
stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__find_table.
network
nothings CWE-125
6.8
2020-01-08 CVE-2020-6617 Reachable Assertion vulnerability in Nothings STB Truetype.H 1.22
stb stb_truetype.h through 1.22 has an assertion failure in stbtt__cff_int.
network
nothings CWE-617
6.8