8 matches found
CVE-2019-13222
An out-of-bounds read of a global buffer in the drawline function in stbvorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a crafted Ogg Vorbis file...
openSUSE Security Advisory (openSUSE-SU-2025:0039-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE 15 Security Update : stb (openSUSE-SU-2025:0039-1)
The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2025:0039-1 advisory. Addressing the follow security issues boo1216478: CVE-2019-13217: heap buffer overflow in startdecoder CVE-2019-13218: stack buffer overflow in...
CVE-2019-13222
An out-of-bounds read of a global buffer in the drawline function in stbvorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a crafted Ogg Vorbis file...
UBUNTU-CVE-2019-13222
An out-of-bounds read of a global buffer in the drawline function in stbvorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a crafted Ogg Vorbis file...
CVE-2019-13222
An out-of-bounds read of a global buffer in the drawline function in stbvorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a crafted Ogg Vorbis file...
CVE-2019-13222
CVE-2019-13222 affects the stb_vorbis draw_line() path in the stb library (stb_vorbis) with an out-of-range read caused by an unchecked NULL returned by get_window(). The public records in connected docs show this is addressed by vendor updates (e.g., openSUSE-SU-2025:0039-1 for stb, Debian DLA-3...
CVE-2019-13222
An out-of-bounds read of a global buffer in the drawline function in stbvorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a crafted Ogg Vorbis file...