High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-11-02	CVE-2021-37789	Out-of-bounds Write vulnerability in multiple products stb_image.h 2.27 has a heap-based buffer over in stbi__jpeg_load, leading to Information Disclosure or Denial of Service. network low complexity stb-project debian CWE-787	8.1
2022-04-15	CVE-2022-28048	Incorrect Calculation vulnerability in multiple products STB v2.27 was discovered to contain an integer shift of invalid size in the component stbi__jpeg_decode_block_prog_ac. network low complexity stb-project fedoraproject CWE-682	8.8
2021-10-15	CVE-2021-28021	Out-of-bounds Write vulnerability in multiple products Buffer overflow vulnerability in function stbi__extend_receive in stb_image.h in stb 2.26 via a crafted JPEG file. local low complexity stb-project fedoraproject debian CWE-787	7.8