CVE-2019-13222

Published August 15th, 2019

View on NVD ↗

CVSS v3

7.1

HIGH

CVSS v2

5.8

MEDIUM

Affected

PROJECT

Description

An out-of-bounds read of a global buffer in the draw_line function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a crafted Ogg Vorbis file.

nothings/stb

stb single-file public domain libraries for C/C++

GitHub

33.9K