JLSEC-2026-531

Source
https://github.com/JuliaLang/SecurityAdvisories.jl/blob/main/advisories/published/2026/JLSEC-2026-531.md
Import Source
https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2026/JLSEC-2026-531.json
JSON Data
https://api.osv.dev/v1/vulns/JLSEC-2026-531
Upstream
Published
2026-05-26T18:32:56.721Z
Modified
2026-05-26T18:45:03.722471568Z
Summary
[none]
Details

A vulnerability was identified in raysan5 raylib up to 909f040. Affected by this issue is the function LoadFontData of the file src/rtext.c. The manipulation leads to integer overflow. The attack can only be performed from a local environment. The exploit is publicly available and might be used. The identifier of the patch is 5a3391fdce046bc5473e52afbd835dd2dc127146. It is suggested to install a patch to address this issue.

Database specific
{
    "sources": [
        {
            "url": "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2025-15534",
            "html_url": "https://nvd.nist.gov/vuln/detail/CVE-2025-15534",
            "database_specific": {
                "status": "Modified"
            },
            "published": "2026-01-18T07:16:01.963Z",
            "imported": "2026-05-24T08:59:51.633Z",
            "id": "CVE-2025-15534",
            "modified": "2026-04-29T01:00:01.613Z"
        }
    ],
    "license": "CC-BY-4.0"
}
References

Affected packages

Julia / Raylib_jll

Package

Name
Raylib_jll
Purl
pkg:julia/Raylib_jll?uuid=f9cae4b5-603c-5a13-b73f-1dfe71482639

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6.0.0+0

Database specific

source
"https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2026/JLSEC-2026-531.json"