pkg:Debian/libstb

All known vulnerabilities

• CRITICAL9.8CVE-2023-47212A heap-based buffer overflow vulnerability exists in the comment functionality of stb _vorbis.c v1.22.
  from 0
• CRITICAL9.8CVE-2023-45666stb_image is a single file MIT licensed library for processing images.
  from 0
• CRITICAL9.1CVE-2019-15058stb_image.h (aka the stb image loader) 2.23 has a heap-based buffer over-read in stbi__tga_load, leading to Information Disclosure or Denia…
  from 0
• HIGH8.8CVE-2026-5317A security flaw has been discovered in Nothings stb up to 1.22.
  from 0
• HIGH8.8CVE-2026-5315A vulnerability was determined in Nothings stb up to 1.26.
  from 0
• HIGH8.8CVE-2026-5314A vulnerability was found in Nothings stb up to 1.26.
  from 0
• HIGH8.8CVE-2025-3409A vulnerability classified as critical has been found in Nothings stb up to f056911.
  from 0
• HIGH8.8CVE-2025-3408A vulnerability was found in Nothings stb up to f056911.
  from 0
• HIGH8.8CVE-2025-3407A vulnerability was found in Nothings stb up to f056911.
  from 0
• HIGH8.8CVE-2023-45664stb_image is a single file MIT licensed library for processing images.
  from 0
• HIGH8.8CVE-2022-28048STB v2.27 was discovered to contain an integer shift of invalid size in the component stbi__jpeg_decode_block_prog_ac.
  from 0
• HIGH8.8CVE-2022-28042stb_image.h v2.27 was discovered to contain an heap-based use-after-free via the function stbi__jpeg_huff_decode.
  from 0, < 0.0~git20200713.b42009b+ds-1+deb11u1
• HIGH8.8CVE-2018-16981libstb - security update
  from 0, < 0.0~git20180212.15.e6afb9c-1+deb10u1
• HIGH8.8CVE-2018-16981libstb - security update
  from 0, < 0.0~git20190617.5.c72a95d-1
• HIGH8.1CVE-2023-45662stb_image is a single file MIT licensed library for processing images.
  from 0
• HIGH8.1CVE-2021-37789stb_image.h 2.27 has a heap-based buffer over in stbi__jpeg_load, leading to Information Disclosure or Denial of Service.
  from 0, < 0.0~git20200713.b42009b+ds-1+deb11u1
• HIGH7.8CVE-2023-45681stb_vorbis is a single file MIT licensed library for processing ogg vorbis files.
  from 0
• HIGH7.8CVE-2023-45679stb_vorbis is a single file MIT licensed library for processing ogg vorbis files.
  from 0
• HIGH7.8CVE-2023-45678stb_vorbis is a single file MIT licensed library for processing ogg vorbis files.
  from 0
• HIGH7.8CVE-2023-45677stb_vorbis is a single file MIT licensed library for processing ogg vorbis files.
  from 0
• HIGH7.8CVE-2023-45676stb_vorbis is a single file MIT licensed library for processing ogg vorbis files.
  from 0
• HIGH7.8CVE-2023-45675stb_vorbis is a single file MIT licensed library for processing ogg vorbis files.
  from 0
• HIGH7.8CVE-2021-28021libstb - security update
  from 0, < 0.0~git20200713.b42009b+ds-1+deb11u1
• HIGH7.8CVE-2021-28021libstb - security update
  from 0, < 0.0~git20200713.b42009b+ds-1+deb11u1
• HIGH7.8CVE-2019-13221A stack buffer overflow in the compute_codewords function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service…
  from 0, < 0.0~git20190817.1.052dce1-1
• HIGH7.8CVE-2019-13217A heap buffer overflow in the start_decoder function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service or ex…
  from 0, < 0.0~git20190817.1.052dce1-1
• HIGH7.5CVE-2023-45667stb_image is a single file MIT licensed library for processing images.
  from 0
• HIGH7.1CVE-2023-45682stb_vorbis is a single file MIT licensed library for processing ogg vorbis files.
  from 0
• HIGH7.1CVE-2023-45661stb_image is a single file MIT licensed library for processing images.
  from 0
• HIGH7.1CVE-2021-42716An issue was discovered in stb stb_image.h 2.27.
  from 0
• HIGH7.1CVE-2019-13222An out-of-bounds read of a global buffer in the draw_line function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of…
  from 0, < 0.0~git20190817.1.052dce1-1
• HIGH7.1CVE-2019-13220Use of uninitialized stack variables in the start_decoder function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of…
  from 0, < 0.0~git20190817.1.052dce1-1
• MEDIUM6.5CVE-2026-5316A vulnerability was identified in Nothings stb up to 1.22.
  from 0
• MEDIUM6.5CVE-2025-3406A vulnerability was found in Nothings stb up to f056911.
  from 0
• MEDIUM6.5CVE-2022-28041stb_image.h v2.27 was discovered to contain an integer overflow via the function stbi__jpeg_decode_block_prog_dc.
  from 0, < 0.0~git20200713.b42009b+ds-1+deb11u1
• MEDIUM6.5CVE-2021-45340In Libsixel prior to and including v1.10.3, a NULL pointer dereference in the stb_image.h component of libsixel allows attackers to cause a…
  from 0
• MEDIUM6.5CVE-2019-20056stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has an assertion failure in stbi__shiftsigned.
  from 0
• MEDIUM5.5CVE-2023-45680stb_vorbis is a single file MIT licensed library for processing ogg vorbis files.
  from 0
• MEDIUM5.5CVE-2023-45663stb_image is a single file MIT licensed library for processing images.
  from 0
• MEDIUM5.5CVE-2023-43898Nothings stb 2.28 was discovered to contain a Null Pointer Dereference via the function stbi__convert_format.
  from 0
• MEDIUM5.5CVE-2022-27938stb_image.h (aka the stb image loader) 2.19, as used in libsixel and other products, has a reachable assertion in stbi__create_png_image_ra…
  from 0
• MEDIUM5.5CVE-2021-42715An issue was discovered in stb stb_image.h 1.33 through 2.27.
  from 0, < 0.0~git20200713.b42009b+ds-1+deb11u1
• MEDIUM5.5CVE-2019-13223A reachable assertion in the lookup1_values function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service by op…
  from 0, < 0.0~git20190817.1.052dce1-1
• MEDIUM5.5CVE-2019-13219A NULL pointer dereference in the get_window function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service by o…
  from 0, < 0.0~git20190817.1.052dce1-1
• MEDIUM5.5CVE-2019-13218Division by zero in the predict_point function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service by opening…
  from 0, < 0.0~git20190817.1.052dce1-1
• MEDIUM5.3CVE-2026-5186A weakness has been identified in Nothings stb up to 2.30.
  from 0
• MEDIUM5.3CVE-2026-5185A security flaw has been discovered in Nothings stb_image up to 2.30.
  from 0
• MEDIUM4.3CVE-2026-5313A vulnerability has been found in Nothings stb up to 2.30.
  from 0