Nixpkgs Security Tracker

Login with GitHub

Details of issue NIXPKGS-2026-0061

NIXPKGS-2026-0061
published on 20 Jan 2026
Permalink CVE-2025-15533
updated 1 month ago by @mweinelt Activity log
  • Created automatic suggestion 1 month ago
  • @mweinelt removed
    5 packages
    • raylib-games
    • ocamlPackages.raylib
    • haskellPackages.h-raylib
    • python312Packages.raylib-python-cffi
    • python313Packages.raylib-python-cffi
    1 month ago
  • @mweinelt removed maintainer @Sigmanificient 1 month ago
  • @mweinelt added maintainer @ehmry 1 month ago
  • @mweinelt removed maintainer @ehmry 1 month ago
  • @mweinelt accepted 1 month ago
  • @mweinelt published on GitHub 1 month ago
raysan5 raylib rtext.c GenImageFontAtlas heap-based overflow

A vulnerability was determined in raysan5 raylib up to 909f040. Affected by this vulnerability is the function GenImageFontAtlas of the file src/rtext.c. Executing a manipulation can lead to heap-based buffer overflow. The attack can only be executed locally. The exploit has been publicly disclosed and may be utilized. This patch is called 5a3391fdce046bc5473e52afbd835dd2dc127146. Applying a patch is advised to resolve this issue.

Affected products

raylib
  • ==909f040

Matching in nixpkgs

pkgs.raylib

Simple and easy-to-use library to enjoy videogames programming

Package maintainers