CVE-2026-5316
CVE-2026-5316 affects the Nothings stb library up to version 1.22. The vulnerable element is the function setup_free in the file stb_vorbis.c , where the manipulation leads to resource allocation. The attack can be performed remotely, and an exploit is publicly available. The vendor was contacted...