Denial Of Service (DoS)

libstb.so is vulnerable to Denial Of Service DoS. The vulnerability exists in the stbiloadgiffrommemory function at stbimage.h due to the function call of stbiloadgifmain which allows an attacker to cause an application crash...

Out-of-bounds Write

libstb.so is vulnerable to Out-of-bounds Write. The vulnerability is caused due to a function f-vendori = get8packetf;. The root cause is an integer overflow in setupmalloc function in file stb/stbvorbis.c in which a sufficiently large value in the variable sz overflows with sz+7 and the negative...

Out-of-bounds Write

libstb.so is vulnerable to Out-of-bounds Write. The vulnerability is due to startdecoder functions maximum number of submaps allowed is 16, but submapfloor and submapresidue are declared as arrays of 15 elements. This allows an attacker can causes an out-of-bounds write in memory with a crafted...

Out-of-bounds Read

libstb.so is vulnerable to Out-of-bounds Read. The vulnerability is caused when stbisetflipverticallyonload is set to TRUE and reqcomp is set to a number that does not match the real number of components per pixel, the library attempts to flip the image vertically. An attacker can craft an image...

Out-of-bounds Read

libstb.so s vulnerable to Out-of-bounds Read. The vulnerability is due to an incorrect calculation of the twoback pointer. This allows an attacker to exploit the out-of-bounds read with a crafted image file using memcpy in stbigifloadnext, This potentially leads to leaking internal memory...

Double Free

libstb.so is vulnerable to Double Free. The vulnerability is due to startdecoder function in stbvorbis.c file does not initialize the memory allocated for f-commentlist. This allows an attacker to craft a file that triggers an early return in the function, leading to setupfree being called on the...

Double Free

libstb.so is vulnerable to Double Free. The vulnerability is caused due to a function stbiloadgifmain when it returns a null value and fails to free memory in delays variable if stbiconvertformat function is called internally and it fails. This can lead to a memory leak or double-free error if an...

Denial Of Service (DoS)

libstb.so is vulnerable to Denial Of Service. The vulnerability is due to the startdecoder function's processing of a specially crafted file, leading to a memory allocation failure due to the function returning early, setting f-commentlist to NULL, but f-commentlistlength is not reset. An attacke...

Out-of-Bounds Write

libstb.so is vulnerable to Out-of-Bounds Writes. This vulnerability exists in the f-vendorlen = char'\0' function of stbvorbis.c because it does not properly allocate memory, which allows to an attacker to perform a heap-based buffer overflow via a crafted ogg vorbis file...

Information Disclosure

libstb.so is vulnerable to Information Disclosure. The stbigetn function reads a specified number of bytes from context into the specified buffer. When the file stream points to the end, it returns zero which allows a remote attacker to gain access to sensitive information via the exploitable...