2020-01-09 00:15:00 2020-01-10 02:13:00

stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__buf_get8.

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL
Advisory Patch Confirmed Link
https://github.com/nothings/stb/issues/868