Out-of-bounds Write

libstb.so is vulnerable to Out-of-bounds Write. The vulnerability is due to startdecoder functions maximum number of submaps allowed is 16, but submapfloor and submapresidue are declared as arrays of 15 elements. This allows an attacker can causes an out-of-bounds write in memory with a crafted...

DEBIAN-CVE-2023-45678

stbvorbis is a single file MIT licensed library for processing ogg vorbis files. A crafted file may trigger out of buffer write in startdecoder because at maximum m-submaps can be 16 but submapfloor and submapresidue are declared as arrays of 15 elements. This issue may lead to code execution...

UBUNTU-CVE-2023-45678

stbvorbis is a single file MIT licensed library for processing ogg vorbis files. A crafted file may trigger out of buffer write in startdecoder because at maximum m-submaps can be 16 but submapfloor and submapresidue are declared as arrays of 15 elements. This issue may lead to code execution...

stb_vorbis buffer error vulnerability

stbvorbis is an open source audio decoder for decoding ogg vorbis files. A security vulnerability exists in stbvorbis, which stems from the fact that a carefully crafted file may trigger a buffer write in "startdecoder", because "m-submaps" can be at most 16, but "submapfloor" and "submapresidue"...

PT-2023-29645

Name of the Vulnerable Software and Affected Versions stb vorbis affected versions not specified Description The issue is related to the processing of ogg vorbis files. A crafted file can trigger an out of buffer write in the start decoder function. This occurs because the maximum value of...