stb heap buffer overflow vulnerability (CNVD-2020-04058)
stb is a C/C++ library consisting of a single file. A heap buffer overflow vulnerability exists in ttUSHORT in stbtruetype.h in stb 1.22 and earlier versions. An attacker can exploit this vulnerability to cause a buffer overflow or heap overflow, among other things...