OSV-2021-979

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/stb/OSV-2021-979.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2021-979
Published
2021-07-13T00:01:26.986629Z
Modified
2022-04-13T03:04:40.811607Z
Summary
Heap-buffer-overflow in stbi__convert_16_to_8
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36087

Crash type: Heap-buffer-overflow READ 2
Crash state:
stbi__convert_16_to_8
stbi__load_and_postprocess_8bit
stbi_load_from_memory
References

Affected packages

OSS-Fuzz / stb

Package

Name
stb
Purl
pkg:generic/stb

Affected ranges

Type
GIT
Repo
https://github.com/nothings/stb.git
Events
Introduced
8c15cc9c79bf6f180d74808657046caf2ec0b445
Fixed
8c15cc9c79bf6f180d74808657046caf2ec0b445

Ecosystem specific 

{
    "severity": "MEDIUM"
}