CNNVD-202508-1891 Information

CNNVD ID

CNNVD-202508-1891

Related CVE

CVE-2025-55286

• CNNVD Published: 2025-08-16

Description (Chinese)

z2d是Chris Marchesi个人开发者的一个开源的纯 Zig 语言编写的 2D 图形库。 z2d 0.7.0版本存在安全漏洞，该漏洞源于覆盖缓冲区边界检查不当，可能导致越界访问或内存损坏。

Description (English)

z2d is a 2D graphic library written in a pure Zig language by Chris Marchesi personal developer. Version z2d 0.7.0 contains a security loophole that stems from inadequate border checks covering the buffer zone, which may result in cross-border visits or damage to memory.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-08-16

Last Modified

2026-02-24

References

https://github.com/vancluever/z2d/pull/137 https://github.com/vancluever/z2d/security/advisories/GHSA-2vq8-cp8r-vcf3 https://github.com/vancluever/z2d/commit/93e45d36af53cda0d7f454ed8440713b7ac155b6 https://nvd.nist.gov/vuln/detail/CVE-2025-55286

Patch

https://github.com/vancluever/z2d/tags