Lucene search

K
cvelistMitreCVELIST:CVE-2017-6350
HistoryFeb 27, 2017 - 7:25 a.m.

CVE-2017-6350

2017-02-2707:25:00
mitre
www.cve.org
6
integer overflow
memory allocation
patch 8.0.0378
tree length
corrupted undo file
buffer overflows

AI Score

8.8

Confidence

High

EPSS

0.009

Percentile

83.1%

An integer overflow at an unserialize_uep memory allocation site would occur for vim before patch 8.0.0378, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.