Out-of-bounds Write
stb_image.h 2.27 has a heap-based buffer over in stbi__jpeg_load, leading to Information Disclosure or Denial of Service.
Advisories for Conan/Stb package
2022
Incorrect Calculation
STB v2.27 was discovered to contain an integer shift of invalid size in the component stbi__jpeg_decode_block_prog_ac.
2021
Out-of-bounds Write
Buffer overflow vulnerability in function stbi__extend_receive in stb_image.h in stb via a crafted JPEG file.