GHSA-gg76-hg3v-5q6c: macroquad vulnerable to multiple soundness issues

May 15, 2025

Several soundness issues have been reported. Resolving them doesn’t seem to be considered a priority. In particular, unprincipled use of mutable statics is pervasive throughout the library, making it possible to cause use-after-free in safe code.

Currently, no fixed version is available.

References

github.com/advisories/GHSA-gg76-hg3v-5q6c
github.com/not-fl3/macroquad
github.com/not-fl3/macroquad/issues/333
github.com/not-fl3/macroquad/issues/634
github.com/not-fl3/macroquad/issues/723
github.com/not-fl3/macroquad/issues/746
rustsec.org/advisories/RUSTSEC-2025-0035.html

Code Behaviors & Features

Detect and mitigate GHSA-gg76-hg3v-5q6c with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →