CVE-2025-15013 | floooh sokol up to 5d11344150973f15e16d3ec4ee7550a73fb995e0 sokol_gfx.h _sg_validate_pipeline_desc stack-based overflow (Issue 1404)

A vulnerability labeled as critical has been found in floooh sokol up to 5d11344150973f15e16d3ec4ee7550a73fb995e0. The impacted element is the function _sg_validate_pipeline_desc in the library sokol_gfx.h. Such manipulation leads to stack-based buffer overflow.

This vulnerability is listed as CVE-2025-15013. The attack must be carried out locally. In addition, an exploit is available.

This product utilizes a rolling release system for continuous delivery, and as such, version information for affected or updated releases is not disclosed. It is best practice to apply a patch to resolve this issue.VulDB Recent EntriesRead More