nothings

7 exploits Active since Aug 2019
CVE-2019-13217 WRITEUP HIGH STUB
stb_vorbis < 2019-03-04 - Heap Buffer Overflow in start_decoder
A heap buffer overflow in the start_decoder function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service or execute arbitrary code by opening a crafted Ogg Vorbis file.
CVSS 7.8
CVE-2019-13218 WRITEUP MEDIUM STUB
stb_vorbis < 2019-03-04 - Denial of Service via Crafted Ogg Vorbis File
Division by zero in the predict_point function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service by opening a crafted Ogg Vorbis file.
CVSS 5.5
CVE-2019-13219 WRITEUP MEDIUM STUB
stb_vorbis < 2019-03-04 - Denial of Service via Crafted Ogg Vorbis File
A NULL pointer dereference in the get_window function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service by opening a crafted Ogg Vorbis file.
CVSS 5.5
CVE-2019-13220 WRITEUP HIGH STUB
stb_vorbis < 2019-03-04 - Use of Uninitialized Resource in start_decoder
Use of uninitialized stack variables in the start_decoder function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a crafted Ogg Vorbis file.
CVSS 7.1
CVE-2019-13221 WRITEUP HIGH WRITEUP
stb_vorbis < 2019-03-04 - Stack Buffer Overflow in compute_codewords Function
A stack buffer overflow in the compute_codewords function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service or execute arbitrary code by opening a crafted Ogg Vorbis file.
CVSS 7.8
CVE-2019-13222 WRITEUP HIGH STUB
stb_vorbis < 2019-03-04 - Out-of-bounds Read in draw_line Function
An out-of-bounds read of a global buffer in the draw_line function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a crafted Ogg Vorbis file.
CVSS 7.1
CVE-2019-13223 WRITEUP MEDIUM WRITEUP
stb_vorbis < 2019-03-04 - Denial of Service via Crafted Ogg Vorbis File
A reachable assertion in the lookup1_values function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service by opening a crafted Ogg Vorbis file.
CVSS 5.5