Skip to content

Instantly share code, notes, and snippets.

@peccc
Created September 30, 2023 13:24
Show Gist options
  • Save peccc/2905a6832ff75408b69edbd615e155e1 to your computer and use it in GitHub Desktop.
Save peccc/2905a6832ff75408b69edbd615e155e1 to your computer and use it in GitHub Desktop.
[CVE ID]
CVE-2023-43898
[PRODUCT]
Nothings(https://github.com/nothings/stb) Stb Image.h
[VERSION]
2.28
[PROBLEM TYPE]
Null Pointer Dereference
[DESCRIPTION]
Nothings stb_image.h v2.28 was discovered to contain a Null Pointer Dereference via the function stbi__convert_format. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted pic file.
[DETAILS]
You can see this link, https://github.com/peccc/null-stb.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment