cve/2023/CVE-2023-45664.md

### [CVE-2023-45664](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-45664)
![](https://img.shields.io/static/v1?label=Product&message=stb&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20%3C%3D%202.28%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-415%3A%20Double%20Free&color=brighgreen)

### Description

stb_image is a single file MIT licensed library for processing images. A crafted image file can trigger `stbi__load_gif_main_outofmem` attempt to double-free the out variable. This happens in `stbi__load_gif_main` because when the `layers * stride` value is zero the behavior is implementation defined, but common that realloc frees the old memory and returns null pointer. Since it attempts to double-free the memory a few lines below the first “free”, the issue can be potentially exploited only in a multi-threaded environment. In the worst case this may lead to code execution.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/fkie-cad/nvd-json-data-feeds