A vulnerability, which was classified as problematic , was found in mackron dr_libs up to 0.13.3 . This affects the function drflac__read_and_decode_metadata of the component PICTURE Handler . Executing a manipulation of the argument mimeLength/descriptionLength can lead to uncontrolled memory allocation. This vulnerability is registered as CVE-2026-32836 . The attack needs to be launched locally. No exploit is available.