stb_image is a single file MIT licensed library for processing images. A crafted image file may trigger out of bounds memcpy read in `stbi__gif_load_next`. This happens because two_back points to a memory address lower than the start of the buffer out. This issue may be used to leak internal memory allocation information.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: GitHub_M
Published: 2023-10-20T23:26:08.605Z
Updated: 2023-10-20T23:26:08.605Z
Reserved: 2023-10-10T14:36:40.859Z
Link: CVE-2023-45661
JSON object: View
NVD Information
Status : Modified
Published: 2023-10-21T00:15:08.783
Modified: 2023-11-04T06:15:52.677
Link: CVE-2023-45661
JSON object: View
Redhat Information
No data.
CWE