2 matches found
PT-2016-3435 · Gnu +3 · Bdwgc +3
Name of the Vulnerable Software and Affected Versions: bdwgc versions prior to 2016-09-27 Description: The issue is related to an integer overflow, which can cause a heap buffer overflow crash and potentially allow the execution of arbitrary code via huge allocation. It is also described as a...
gc: malloc() and calloc() overflows
Multiple integer overflows in the 1 GCgenericmalloc and 2 calloc functions in malloc.c, and the 3 GCgenericmallocignoreoffpage function in mallocx.c in Boehm-Demers-Weiser GC libgc before 7.2 make it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows...