[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FD] Stb_truetype library heap buffer overflows (many CVEs, no CVEs yet)

To: fulldisclosure@xxxxxxxxxxxx
Subject: [FD] Stb_truetype library heap buffer overflows (many CVEs, no CVEs yet)
From: Marcin Kozlowski <marcinguy@xxxxxxxxx>
Date: Sun, 1 Aug 2021 21:05:23 +0200

Hi list,

Posting here for transparency reasons. A 16k stars project, used in, I can
imagine game engines, UI, Android/iOS/embedded. Used in another 30k stars
project and 11k from even Google (also possibly not fixed). OpenCV 55k
stars seems to be also affected (new branch only). Attack vector through
malicious font. Buy me a beer if you will get bounty on it and initial
fuzzing person https://github.com/nothings/stb/issues/618

Should this have a codename "BadSTB" lol. Thoughts?

Per Developer library was not intended to work with untrusted data.

Be careful when using it, consider a replacement. This is PSA.

Thanks,

P.S Full thread here:
https://twitter.com/marcinguy/status/1421740689516339200?s=19

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Prev by Date: [FD] Spammers Using storage[.]googleapis[.]com ?!!?
Next by Date: [FD] Backdoor.Win32.WinShell.40 / Unauthenticated Remote Command Execution
Previous by thread: Re: [FD] Spammers Using storage[.]googleapis[.]com ?!!?
Next by thread: [FD] Backdoor.Win32.WinShell.40 / Unauthenticated Remote Command Execution
Index(es):
- Date
- Thread