Double Free vulnerability in Nothings Stb Image.h v.2.28 allows a remote attacker to cause a denial of service via a crafted file to the stbi_load_gif_main function.
References
Configurations
History
21 Nov 2024, 08:23
Type | Values Removed | Values Added |
---|---|---|
References | () https://gist.github.com/peccc/d8761f6ac45ad55cbd194dd7e6fdfdac - Exploit, Third Party Advisory | |
References | () https://github.com/peccc/double-stb - Exploit, Third Party Advisory | |
References | () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NMXKOKPP4BKTNUTF5KSRDQAWOUILQZNO/ - | |
References | () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QVABVF4GEM6BYD5L4L64RCRSXUHY6LGN/ - | |
References | () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UVQ7ONFH5GWLMXYEAJG32A3EUKUCEVCR/ - |
07 Nov 2023, 04:21
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
04 Nov 2023, 06:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
03 Nov 2023, 23:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
31 Oct 2023, 20:00
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
CWE | CWE-415 | |
First Time |
Nothings stb Image.h
Nothings |
|
CPE | cpe:2.3:a:nothings:stb_image.h:2.28:*:*:*:*:*:*:* | |
References | (MISC) https://gist.github.com/peccc/d8761f6ac45ad55cbd194dd7e6fdfdac - Exploit, Third Party Advisory | |
References | (MISC) https://github.com/peccc/double-stb - Exploit, Third Party Advisory |
25 Oct 2023, 18:17
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-10-25 18:17
Updated : 2024-11-21 08:23
NVD link : CVE-2023-43281
Mitre link : CVE-2023-43281
CVE.ORG link : CVE-2023-43281
JSON object : View
Products Affected
nothings
- stb_image.h
CWE
CWE-415
Double Free