CVE-2018-13794
Description
A heap-based buffer overflow exists in stbi__bmp_load_cont in stb_image.h in catimg 2.4.0.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Heap-based buffer overflow in stb_image.h BMP loader in catimg 2.4.0 allows denial of service or arbitrary code execution via crafted ICO file.
Vulnerability
A heap-based buffer overflow exists in the stbi__bmp_load_cont function in stb_image.h in catimg version 2.4.0. The vulnerability is triggered when processing ICO files that contain embedded BMP images. The overflow occurs at line 4748 of stb_image.h while writing to a heap buffer allocated earlier in the same function [1].
Exploitation
An attacker can exploit this vulnerability by supplying a specially crafted ICO file to catimg. No special privileges or authentication are required; the victim only needs to use catimg to display the malicious image. The overflow can be triggered via normal usage of the catimg tool.
Impact
Successful exploitation of this heap-based buffer overflow could lead to memory corruption, potentially allowing an attacker to cause a denial of service or achieve arbitrary code execution with the privileges of the user running catimg. The ASAN report confirms a write of size 1 to a heap region, indicating a classic buffer overflow scenario [1].
Mitigation
As of the provided reference, no official fix has been released for this vulnerability in catimg 2.4.0. Users should monitor the catimg repository for updates and consider avoiding the use of catimg with untrusted ICO files until a patch is available.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- github.com/posva/catimg/issues/34mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.