14 matches found
CVE-2022-25514
stbtruetype.h v1.26 was discovered to contain a heap-buffer-overflow via the function ttUSHORT at stbtruetype.h. NOTE: Third party has disputed stating that the source code has also a disclaimer that it should only be used with trusted input...
Heap-based Buffer Overflow
Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow via the function ttUSHORT at stbtruetype.h. Remediation There is no fixed version for stb. References - GitHub Issue...
CVE-2022-25514
stbtruetype.h v1.26 was discovered to contain a heap-buffer-overflow via the function ttUSHORT at stbtruetype.h. NOTE: Third party has disputed stating that the source code has also a disclaimer that it should only be used with trusted input...
CVE-2022-25514
stbtruetype.h v1.26 was discovered to contain a heap-buffer-overflow via the function ttUSHORT at stbtruetype.h. NOTE: Third party has disputed stating that the source code has also a disclaimer that it should only be used with trusted input...
CVE-2022-25514
stbtruetype.h v1.26 was discovered to contain a heap-buffer-overflow via the function ttUSHORT at stbtruetype.h. NOTE: Third party has disputed stating that the source code has also a disclaimer that it should only be used with trusted input...
Heap overflow
DISPUTED stbtruetype.h v1.26 was discovered to contain a heap-buffer-overflow via the function ttUSHORT at stbtruetype.h. NOTE: Third party has disputed stating that the source code has also a disclaimer that it should only be used with trusted input...
stb_truetype.h 缓冲区错误漏洞
stbtruetype.h is a TTF font parsing library. A buffer error vulnerability exists in stbtruetype.h v1.26, which stems from the function ttUSHORT in stbtruetype.h containing a heap buffer overflow...
CVE-2022-25514
The CVE-2022-25514 entry concerns stb_truetype.h v1.26, where a heap-buffer-overflow is triggered by ttUSHORT() in stb_truetype.h. The Red Hat, NVD, and related feeds confirm the affected component and the root cause as a heap-buffer-overflow in ttUSHORT(); the attack surface is tied to the stb_t...
PT-2022-17343 · Unknown · Stb Truetype.H
Name of the Vulnerable Software and Affected Versions: stb truetype.h version 1.26 Description: A heap-buffer-overflow issue was discovered in the ttUSHORT function at stb truetype.h. It is noted that the source code includes a disclaimer stating it should only be used with trusted input. A third...
CVE-2022-25514
Removed by vendor...
stb heap buffer overflow vulnerability (CNVD-2020-04058)
stb is a C/C++ library consisting of a single file. A heap buffer overflow vulnerability exists in ttUSHORT in stbtruetype.h in stb 1.22 and earlier versions. An attacker can exploit this vulnerability to cause a buffer overflow or heap overflow, among other things...
UBUNTU-CVE-2020-6621
stb stbtruetype.h through 1.22 has a heap-based buffer over-read in ttUSHORT...
CVE-2020-6621
Removed by vendor...
CVE-2020-6621
CVE-2020-6621 concerns the stb_truetype.h library (up to 1.22) containing a heap-based buffer over-read in the ttUSHORT function. The primary description across sources identifies this as a heap-based over-read/overflow condition in stb_truetype.h, version 1.22 and earlier. The NVD entry lists a ...