CVE-2026-5314 Nothings stb TTF File stb_truetype.h stbtt_InitFont_internal out-of-bounds

🗓️ 01 Apr 2026 22:15:15Reported by VulDBType

CVE-2026-5314: Out-of-bounds read in stbtt_InitFont_internal (stb_truetype.h); remote exploit.

Reporter	Title	Published	Views	Family All 13
ATTACKERKB	CVE-2026-5314	1 Apr 202622:15	–	attackerkb
CNNVD	stb 缓冲区错误漏洞	1 Apr 202600:00	–	cnnvd
CVE	CVE-2026-5314	1 Apr 202622:15	–	cve
Debian CVE	CVE-2026-5314	1 Apr 202622:15	–	debiancve
EUVD	EUVD-2026-18092	2 Apr 202600:31	–	euvd
NVD	CVE-2026-5314	1 Apr 202623:17	–	nvd
OSV	DEBIAN-CVE-2026-5314	1 Apr 202623:17	–	osv
OSV	UBUNTU-CVE-2026-5314	1 Apr 202623:17	–	osv
Positive Technologies	PT-2026-29639	1 Apr 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-5314	2 Apr 202606:07	–	redhatcve

[
  {
    "vendor": "Nothings",
    "product": "stb",
    "versions": [
      {
        "version": "1.0",
        "status": "affected"
      },
      {
        "version": "1.1",
        "status": "affected"
      },
      {
        "version": "1.2",
        "status": "affected"
      },
      {
        "version": "1.3",
        "status": "affected"
      },
      {
        "version": "1.4",
        "status": "affected"
      },
      {
        "version": "1.5",
        "status": "affected"
      },
      {
        "version": "1.6",
        "status": "affected"
      },
      {
        "version": "1.7",
        "status": "affected"
      },
      {
        "version": "1.8",
        "status": "affected"
      },
      {
        "version": "1.9",
        "status": "affected"
      },
      {
        "version": "1.10",
        "status": "affected"
      },
      {
        "version": "1.11",
        "status": "affected"
      },
      {
        "version": "1.12",
        "status": "affected"
      },
      {
        "version": "1.13",
        "status": "affected"
      },
      {
        "version": "1.14",
        "status": "affected"
      },
      {
        "version": "1.15",
        "status": "affected"
      },
      {
        "version": "1.16",
        "status": "affected"
      },
      {
        "version": "1.17",
        "status": "affected"
      },
      {
        "version": "1.18",
        "status": "affected"
      },
      {
        "version": "1.19",
        "status": "affected"
      },
      {
        "version": "1.20",
        "status": "affected"
      },
      {
        "version": "1.21",
        "status": "affected"
      },
      {
        "version": "1.22",
        "status": "affected"
      },
      {
        "version": "1.23",
        "status": "affected"
      },
      {
        "version": "1.24",
        "status": "affected"
      },
      {
        "version": "1.25",
        "status": "affected"
      },
      {
        "version": "1.26",
        "status": "affected"
      }
    ],
    "modules": [
      "TTF File Handler"
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/submit/780558
vuldb	www.vuldb.com/vuln/354646
gist	www.gist.github.com/d0razi/cb31a92f3205a4373f19b7da25946848
vuldb	www.vuldb.com/vuln/354646/cti

01 Apr 2026 22:15Current

CVSS 3.14.3

CVSS 34.3

CVSS 25

CVSS 45.3

EPSS0.00072