Published: 02/11/2022 Updated: 28/02/2023

CVSS v3 Base Score: 8.1 | Impact Score: 5.2 | Exploitability Score: 2.8

VMScore: 0

stb_image.h 2.27 has a heap-based buffer over in stbi__jpeg_load, leading to Information Disclosure or Denial of Service.

Vulnerable Product	Search on Vulmon	Subscribe to Product
stb project stb 2.27
debian debian linux 10.0

Debian Bug report logs - #1023693 libstb: CVE-2021-37789 Package: src:libstb; Maintainer for src:libstb is Yangfl <mmyangfl@gmailcom>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Tue, 8 Nov 2022 19:45:02 UTC Severity: important Tags: security, upstream Forwarded to githubcom/nothings/stb/iss ...

DescriptionThe MITRE CVE dictionary describes this issue as: stb_imageh 227 has a heap-based buffer over in stbi__jpeg_load, leading to Information Disclosure or Denial of Service ...

CWE-787 https://github.com/nothings/stb/issues/1178 https://lists.debian.org/debian-lts-announce/2023/01/msg00045.html https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1023693 https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2021-37789

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2021-37789

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect