Launchpad.net

CVE 2020-6618

stb stb_truetype.h through 1.22 has a heap-based buffer over-read in stbtt__find_table.

See the CVE page on Mitre.org for more details.

References