CVE-2025-55286 z2d OOB drawing with new multi-sample anti-aliasing could lead to invalid memory access and corruption

z2d is a pure Zig 2D graphics library. z2d v0.7.0 released with a new multi-sample anti-aliasing MSAA method, which uses a new buffering mechanism for storing coverage data. This differs from the standard alpha mask surface used for the previous super-sample anti-aliasing SSAA method. Under certa...

CVE-2025-46333

z2d is a pure Zig 2D graphics library. Versions of z2d after 0.5.1 and up to and including 0.6.0, when writing from one surface to another using z2d.compositor.StrideCompositor.run, and higher-level operations when the anti-aliasing mode is set to .default such as Context.fill, Context.stroke,...

CVE-2025-46333

The CVE-2025-46333 issue in z2d affects versions 0.5.1 up to 0.6.0, where writing between surfaces via z2d.compositor.StrideCompositor.run and certain anti-aliasing modes can cause the source surface to be out-of-bounds on the x-axis due to a negative offset. This leads to an overflow in the stri...

CVE-2025-46333 z2d OOB composition could lead to invalid memory access and corruption

z2d is a pure Zig 2D graphics library. Versions of z2d after 0.5.1 and up to and including 0.6.0, when writing from one surface to another using z2d.compositor.StrideCompositor.run, and higher-level operations when the anti-aliasing mode is set to .default such as Context.fill, Context.stroke,...

z2d 安全漏洞

z2d is an open source 2D graphics library written in the pure Zig language by Chris Marchesi, an individual developer. A security vulnerability exists in z2d version 0.6.0, which stems from the possibility that the source surface may be completely out of bounds on the x-axis when using...