Astra Linux - уязвимость в libstb

It was discovered that Nothings stb 2.28 contains a Null Pointer Dereference issue through the stbiconvertformat function. This vulnerability allows attackers to cause a Denial of Service DoS attack using a specially crafted PIC file...

stb-image-cwe190-poc

PoC — stbimage v2.30 stbiconvertformat16 integer overf...

Double Free

Overview Affected versions of this package are vulnerable to Double Free in the stbiloadgifmain function, an attacker can cause a memory leak or a double-free error by manipulating the delays output value. This is only exploitable if stbiloadgifmain returns a null value and stbiconvertformat is...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the stbiconvertformat function. An attacker can cause a denial of service by using a crafted pic file. Remediation There is no fixed version for stb. References - PoC Credit: peccc...

stb code issue vulnerability

stb is a single-file public domain library for C/C ++. A code issue vulnerability exists in stb version 2.28, which stems from a null pointer dereference issue in the function stbiconvertformat. An attacker could exploit this vulnerability to cause a Denial of Service DoS via a specially crafted...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in the stbiconvertformat function via the stbimage.h component. An attacker can cause a crash and denial of service by loading a specially crafted invalid PICT file. Remediation Upgrade sdlimage to version 3.4.0...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in the stbiconvertformat function via the stbimage.h component. An attacker can cause a crash and denial of service by loading a specially crafted invalid PICT file. Remediation A fix was pushed into the master...