Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
stb_vorbis: fix CVE-2023-45676 and CVE-2023-45677.
Based on the patches by Jaroslav Lobačevski (@JarLob) submitted to mainstream at: nothings/stb#1554 and nothings/stb#1555 GHSL-2023-166/CVE-2023-45676: Multi-byte write heap buffer overflow in start_decoder() GHSL-2023-167/CVE-2023-45677: Heap buffer out of bounds write in start_decoder()
- Loading branch information