The SQLDriverConnect() function in unixODBC before 2.2.14p2 have a possible buffer overflow condition when specifying a large value for SAVEFILE parameter in the connection string.
[
{
"product": "unixodbc",
"vendor": "unixodbc",
"versions": [
{
"status": "affected",
"version": "before 2.2.14p2"
}
]
}
]