PicoC 缓冲区错误漏洞

PicoC is a lightweight C interpreter. A buffer error vulnerability exists in PicoC version 3.2.2, which stems from a heap buffer overflow contained in the StdioBasePrintf function in cstdlib/string.c when ExpressionParseFunctionCall is called...

PT-2022-27183 · Picoc · Picoc

Name of the Vulnerable Software and Affected Versions: PicoC version 3.2.2 Description: A heap buffer overflow was discovered in the StdioBasePrintf function in cstdlib/string.c when called from ExpressionParseFunctionCall. This issue affects the PicoC compiler. Recommendations: For PicoC version...

CVE-2022-44318

CVE-2022-44318 affects PicoC 3.2.2, with a heap buffer overflow in the StringStrcat function (stdlib/string.c) when invoked via ExpressionParseFunctionCall. Root cause: improper handling during string concatenation leading to a heap overflow. Impact stated as availability-related (HIGH) in CVSS d...

CVE-2022-44320

PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the ExpressionCoerceFP function in expression.c when called from ExpressionParseFunctionCall...

CVE-2019-16277

PicoC 2.1 has a heap-based buffer overflow in StringStrcpy in cstdlib/string.c when called from ExpressionParseFunctionCall in expression.c...

Heap overflow

PicoC 2.1 has a heap-based buffer overflow in StringStrcpy in cstdlib/string.c when called from ExpressionParseFunctionCall in expression.c...

CVE-2019-16277

PicoC 2.1 has a heap-based buffer overflow in StringStrcpy in cstdlib/string.c when called from ExpressionParseFunctionCall in expression.c...