CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
47.9%
Multiple integer overflows in TCMalloc (tcmalloc.cc) in gperftools before 0.4 make it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large size value, which causes less memory to be allocated than expected.
Vendor | Product | Version | CPE |
---|---|---|---|
csilvers | gperftools | * | cpe:2.3:a:csilvers:gperftools:*:*:*:*:*:*:*:* |
csilvers | gperftools | 0.1 | cpe:2.3:a:csilvers:gperftools:0.1:*:*:*:*:*:*:* |
csilvers | gperftools | 0.2 | cpe:2.3:a:csilvers:gperftools:0.2:*:*:*:*:*:*:* |