VYPR

Dr Libs

by Mackron

Source repositories

CVEs (3)

  • CVE-2026-32836MedMar 17, 2026
    risk 0.33cvss 6.2epss 0.00

    dr_libs dr_flac.h version 0.13.3 and earlier (fixed in commits fefced4, 4f5a4cd, and 663239a) contain an uncontrolled memory allocation vulnerability in drflac__read_and_decode_metadata() that allows attackers to trigger excessive memory allocation by supplying crafted PICTURE…

  • CVE-2025-14369MedJan 20, 2026
    risk 0.29cvss 5.5epss 0.00

    dr_flac, an audio decoder within the dr_libs toolset, contains an integer overflow vulnerability flaw due to trusting the totalPCMFrameCount field from FLAC metadata before calculating buffer size, allowing an attacker with a specially crafted file to perform DoS against…

  • CVE-2026-29022Mar 3, 2026
    risk 0.00cvss epss 0.00

    dr_libs dr_wav.h version 0.14.4 and earlier (fixed in commit 8a7258c) contain a heap buffer overflow vulnerability in the drwav__read_smpl_to_metadata_obj() function of dr_wav.h that allows memory corruption via crafted WAV files. Attackers can exploit a mismatch between…