CVE-2023-45675

Name of the Vulnerable Software and Affected Versions stb vorbis (affected versions not specified)

Description The issue is related to a crafted file that may trigger an out of bounds write in f->vendor[len] = (char)'0';. This occurs when the length read in start decoder is -1 and len + 1 becomes 0 when passed to setup malloc. The setup malloc function behaves differently when f->alloc.alloc buffer is pre-allocated, shifting the pre-allocated buffer by zero and returning the currently available memory block instead of returning NULL as in the malloc case. This may lead to code execution. The vulnerability may allow an attacker to access confidential data, compromise its integrity, and cause a denial of service using a specially crafted file.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.