CNNVD-202601-2963 Information

CNNVD ID

CNNVD-202601-2963

Related CVE

CVE-2025-15535

• CNNVD Published: 2026-01-18

Description (Chinese)

Clay是Nic Barker个人开发者的一个高性能UI布局库。 Clay 0.14及之前版本存在代码问题漏洞，该漏洞源于clay.h库中Clay__MeasureTextCached函数存在空指针取消引用，可能导致本地攻击。

Description (English)

Clay is a high-performance UI layout of Nic Barker’s personal developer. Clay 0.14 and previous versions had a code problem loophole, which originated in the Clay-MeasureTextCached function in Clay.h and could lead to local attacks.

Hazard Level

Critical

Vulnerability Type

代码问题

Affected Vendor

个人开发者

Published

2026-01-18

Last Modified

2026-02-24

References

https://github.com/oneafter/1215/blob/main/repro https://vuldb.com/?ctiid.341707 https://vuldb.com/?id.341707 https://vuldb.com/?submit.733346 https://github.com/nicbarker/clay/issues/566 https://access.redhat.com/security/cve/cve-2025-15535