Nothings Stb Image.H vulnerabilities

CVE-2025-3406 [MEDIUM] CWE-119 CVE-2025-3406: A vulnerability was found in Nothings stb up to f056911. It has been classified as problematic. Affe A vulnerability was found in Nothings stb up to f056911. It has been classified as problematic. Affected is the function stbhw_build_tileset_from_image of the component Header Array Handler. The manipulation of the argument w leads to out-of-bounds read. It is possible to launch the attack remotely. This product is using a rolling release to provide c

CVE-2025-3407 [MEDIUM] CWE-119 CVE-2025-3407: A vulnerability was found in Nothings stb up to f056911. It has been declared as critical. Affected A vulnerability was found in Nothings stb up to f056911. It has been declared as critical. Affected by this vulnerability is the function stbhw_build_tileset_from_image. The manipulation of the argument h_count/v_count leads to out-of-bounds read. The attack can be launched remotely. This product takes the approach of rolling releases to provide contin

CVE-2025-3409 [MEDIUM] CWE-119 CVE-2025-3409: A vulnerability classified as critical has been found in Nothings stb up to f056911. This affects th A vulnerability classified as critical has been found in Nothings stb up to f056911. This affects the function stb_include_string. The manipulation of the argument path_to_includes leads to stack-based buffer overflow. It is possible to initiate the attack remotely. This product does not use versioning. This is why information about affected and unaff

CVE-2025-3408 [MEDIUM] CWE-189 CVE-2025-3408: A vulnerability was found in Nothings stb up to f056911. It has been rated as critical. Affected by A vulnerability was found in Nothings stb up to f056911. It has been rated as critical. Affected by this issue is the function stb_dupreplace. The manipulation leads to integer overflow. The attack may be launched remotely. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases

CVE-2023-43281 [MEDIUM] CWE-415 CVE-2023-43281: Double Free vulnerability in Nothings Stb Image.h v.2.28 allows a remote attacker to cause a denial Double Free vulnerability in Nothings Stb Image.h v.2.28 allows a remote attacker to cause a denial of service via a crafted file to the stbi_load_gif_main function.

CVE-2023-45666 [CRITICAL] CWE-415 CVE-2023-45666: stb_image is a single file MIT licensed library for processing images. It may look like `stbi__load stb_image is a single file MIT licensed library for processing images. It may look like `stbi__load_gif_main` doesn’t give guarantees about the content of output value `*delays` upon failure. Although it sets `*delays` to zero at the beginning, it doesn’t do it in case the image is not recognized as GIF and a call to `stbi__load_gif_main_outofmem`

CVE-2023-45661 [HIGH] CWE-125 CVE-2023-45661: stb_image is a single file MIT licensed library for processing images. A crafted image file may trig stb_image is a single file MIT licensed library for processing images. A crafted image file may trigger out of bounds memcpy read in `stbi__gif_load_next`. This happens because two_back points to a memory address lower than the start of the buffer out. This issue may be used to leak internal memory allocation information.

CVE-2023-45662 [HIGH] CWE-125 CVE-2023-45662: stb_image is a single file MIT licensed library for processing images. When `stbi_set_flip_verticall stb_image is a single file MIT licensed library for processing images. When `stbi_set_flip_vertically_on_load` is set to `TRUE` and `req_comp` is set to a number that doesn’t match the real number of components per pixel, the library attempts to flip the image vertically. A crafted image file can trigger `memcpy` out-of-bounds read because `bytes_per_

CVE-2023-45667 [HIGH] CWE-476 CVE-2023-45667: stb_image is a single file MIT licensed library for processing images. If `stbi__load_gif_main` in stb_image is a single file MIT licensed library for processing images. If `stbi__load_gif_main` in `stbi_load_gif_from_memory` fails it returns a null pointer and may keep the `z` variable uninitialized. In case the caller also sets the flip vertically flag, it continues and calls `stbi__vertical_flip_slices` with the null pointer result value and the

CVE-2023-45664 [HIGH] CWE-415 CVE-2023-45664: stb_image is a single file MIT licensed library for processing images. A crafted image file can trig stb_image is a single file MIT licensed library for processing images. A crafted image file can trigger `stbi__load_gif_main_outofmem` attempt to double-free the out variable. This happens in `stbi__load_gif_main` because when the `layers * stride` value is zero the behavior is implementation defined, but common that realloc frees the old memory and r

CVE-2023-45663 [MEDIUM] CWE-908 CVE-2023-45663: stb_image is a single file MIT licensed library for processing images. The stbi__getn function reads stb_image is a single file MIT licensed library for processing images. The stbi__getn function reads a specified number of bytes from context (typically a file) into the specified buffer. In case the file stream points to the end, it returns zero. There are two places where its return value is not checked: In the `stbi__hdr_load` function and in the

CVE-2023-43898 [MEDIUM] CWE-476 CVE-2023-43898: Nothings stb 2.28 was discovered to contain a Null Pointer Dereference via the function stbi__conver Nothings stb 2.28 was discovered to contain a Null Pointer Dereference via the function stbi__convert_format. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted pic file.

CVE-2022-28042 [HIGH] CWE-416 CVE-2022-28042: stb_image.h v2.27 was discovered to contain an heap-based use-after-free via the function stbi__jpeg stb_image.h v2.27 was discovered to contain an heap-based use-after-free via the function stbi__jpeg_huff_decode.

CVE-2022-28041 [MEDIUM] CWE-190 CVE-2022-28041: stb_image.h v2.27 was discovered to contain an integer overflow via the function stbi__jpeg_decode_b stb_image.h v2.27 was discovered to contain an integer overflow via the function stbi__jpeg_decode_block_prog_dc. This vulnerability allows attackers to cause a Denial of Service (DoS) via unspecified vectors.

CVE-2021-42716 [HIGH] CWE-120 CVE-2021-42716: An issue was discovered in stb stb_image.h 2.27. The PNM loader incorrectly interpreted 16-bit PGM f An issue was discovered in stb stb_image.h 2.27. The PNM loader incorrectly interpreted 16-bit PGM files as 8-bit when converting to RGBA, leading to a buffer overflow when later reinterpreting the result as a 16-bit buffer. An attacker could potentially have crashed a service using stb_image, or read up to 1024 bytes of non-consecutive heap data with

CVE-2021-42715 [MEDIUM] CWE-835 CVE-2021-42715: An issue was discovered in stb stb_image.h 1.33 through 2.27. The HDR loader parsed truncated end-of An issue was discovered in stb stb_image.h 1.33 through 2.27. The HDR loader parsed truncated end-of-file RLE scanlines as an infinite sequence of zero-length runs. An attacker could potentially have caused denial of service in applications using stb_image by submitting crafted HDR files.

CVE-2019-20056 [MEDIUM] CWE-617 CVE-2019-20056: stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has an assertio stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has an assertion failure in stbi__shiftsigned.

CVE-2019-19777 [HIGH] CWE-125 CVE-2019-19777: stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has a heap-base stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has a heap-based buffer over-read in stbi__load_main.

CVE-2018-16981 [HIGH] CWE-787 CVE-2018-16981: stb stb_image.h 2.19, as used in catimg, Emscripten, and other products, has a heap-based buffer ove stb stb_image.h 2.19, as used in catimg, Emscripten, and other products, has a heap-based buffer overflow in the stbi__out_gif_code function.