stb 资源管理错误漏洞

STB is a public domain library for C/C++ developed by Sean Barrett. Versions of STB prior to 2.30 contained a resource management vulnerability, which stemmed from incorrect operations on the stbiloadgifmain function in the stbimage.h file. This vulnerability could lead to double deallocation of...

Linux Distros Unpatched Vulnerability : CVE-2018-16981

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - stb stbimage.h 2.19, as used in catimg, Emscripten, and other products, has a heap-based buffer overflow in the stbioutgifcode function. CVE-2018-16981 Note tha...

Linux Distros Unpatched Vulnerability : CVE-2021-45340

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Libsixel prior to and including v1.10.3, a NULL pointer dereference in the stbimage.h component of libsixel allows attackers to cause a denial of service DOS...

Linux Distros Unpatched Vulnerability : CVE-2022-29977

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is an assertion failure error in stbijpeghuffdecode, stbimage.h:1894 in libsixel img2sixel 1.8.6. Remote attackers could leverage this vulnerability to...

The vulnerability of the stb_image.h component in the C/C++ Libstb library allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the stbimage.h component in the C/C++ Libstb library is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

The vulnerability of the stb_image.h component in the C/C++ Libstb library allows a hacker to access confidential data and also trigger a service denial.

The vulnerability of the stbimage.h component in the C/C++ Libstb library is related to the copying of buffers without checking the input data. Exploiting this vulnerability can allow an attacker to gain access to confidential data, as well as cause service failures...

UBUNTU-CVE-2023-43281

Double Free vulnerability in Nothings Stb Image.h v.2.28 allows a remote attacker to cause a denial of service via a crafted file to the stbiloadgifmain function...

SUSE CVE-2021-28021

Buffer overflow vulnerability in function stbiextendreceive in stbimage.h in stb 2.26 via a crafted JPEG file...

UBUNTU-CVE-2021-45340

In Libsixel prior to and including v1.10.3, a NULL pointer dereference in the stbimage.h component of libsixel allows attackers to cause a denial of service DOS via a crafted PICT file...

DEBIAN-CVE-2021-42716

An issue was discovered in stb stbimage.h 2.27. The PNM loader incorrectly interpreted 16-bit PGM files as 8-bit when converting to RGBA, leading to a buffer overflow when later reinterpreting the result as a 16-bit buffer. An attacker could potentially have crashed a service using stbimage, or...

DEBIAN-CVE-2021-42715

An issue was discovered in stb stbimage.h 1.33 through 2.27. The HDR loader parsed truncated end-of-file RLE scanlines as an infinite sequence of zero-length runs. An attacker could potentially have caused denial of service in applications using stbimage by submitting crafted HDR files...

UBUNTU-CVE-2021-42715

An issue was discovered in stb stbimage.h 1.33 through 2.27. The HDR loader parsed truncated end-of-file RLE scanlines as an infinite sequence of zero-length runs. An attacker could potentially have caused denial of service in applications using stbimage by submitting crafted HDR files...

PT-2021-7979 · Unknown +3 · Stb Image.H +3

Name of the Vulnerable Software and Affected Versions: stb image.h versions 1.33 through 2.27 Description: The issue is related to the HDR loader in stb image.h, which parses truncated end-of-file RLE scanlines as an infinite sequence of zero-length runs. This could allow a remote attacker to cau...

UBUNTU-CVE-2019-19777

stbimage.h aka the stb image loader 2.23, as used in libsixel and other products, has a heap-based buffer over-read in stbiloadmain...

stb_image.h Buffer Overflow Vulnerability

stbimage.h is an image library. A buffer overflow vulnerability exists in the 'stbiloadmain' function in stbimage.h version 2.23 used in libsixel and other products, which arises from a networked system or product that does not properly validate data boundaries when executing an operation in...

UBUNTU-CVE-2018-19756

There is a heap-based buffer over-read at stbimage.h function: stbitgaload in libsixel 1.8.2 that will cause a denial of service...