CVE-2023-43281

Name of the Vulnerable Software and Affected Versions Nothings Stb Image.h version 2.28

Description The issue allows a remote attacker to cause a denial of service via a crafted file to the stbi load gif main function. This is a Double Free vulnerability.

Recommendations For Nothings Stb Image.h version 2.28, consider avoiding the use of the stbi load gif main function until a patch is available. As a temporary workaround, restrict the processing of crafted files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.