CVE-2023-45680 — NULL Pointer Dereference in STB Vorbis.c

CWE-476 — NULL Pointer Dereference4 documents4 sources

Severity

5.5MEDIUMNVD

CNA5.3

EPSS

0.0%

top 94.17%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Nothings STB Nothings STB Vorbis.c

Timeline

PublishedOct 21

Description

stb_vorbis is a single file MIT licensed library for processing ogg vorbis files. A crafted file may trigger memory allocation failure in `start_decoder`. In that case the function returns early, the `f->comment_list` is set to `NULL`, but `f->comment_list_length` is not reset. Later in `vorbis_deinit` it tries to dereference the `NULL` pointer. This issue may lead to denial of service.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

▶NVDnothings/stb_vorbis.c1.22

▶CVEListV5nothings/stb1.22

🔴Vulnerability Details

OSV

CVE-2023-45680: stb_vorbis is a single file MIT licensed library for processing ogg vorbis files↗2023-10-21

▶

CVEList

Null pointer dereference in vorbis_deinit in stb_vorbis↗2023-10-20

▶

📋Vendor Advisories

Debian

CVE-2023-45680: libstb - stb_vorbis is a single file MIT licensed library for processing ogg vorbis files...↗2023

▶