CVE-2026-5186
Double Free Vulnerability in stb_image.h Multi-frame GIF Handler
Publication date: 2026-03-31
Last updated on: 2026-04-29
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| nothings | stb | to 2.30 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-119 | The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data. |
| CWE-415 | The product calls free() twice on the same memory address. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a weakness in the Multi-frame GIF File Handler component of Nothings stb, specifically in the function stbi__load_gif_main within the file stb_image.h. It causes a double free error, which means that the program attempts to free the same memory twice. This can lead to undefined behavior, including crashes or potential exploitation.
The attack requires local access to the system, and the exploit code has been made publicly available.
How can this vulnerability impact me? :
This vulnerability can impact you by allowing an attacker with local access to cause a double free condition, which may lead to program crashes or potentially allow execution of arbitrary code. This could compromise the stability and security of the affected application or system.