18 matches found
EUVD-2022-47262
Malicious code in bioql PyPI...
PicoC StringStrncpy function buffer overflow vulnerability
PicoC is a lightweight C interpreter. A buffer overflow vulnerability exists in PicoC version 3.2.2, which stems from a boundary error in the StringStrncpy function in cstdlib/string.c when ExpressionParseFunctionCall is called while processing untrusted input. An attacker can exploit the...
CVE-2022-44318
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the StringStrcat function in cstdlib/string.c when called from ExpressionParseFunctionCall...
CVE-2022-44318
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the StringStrcat function in cstdlib/string.c when called from ExpressionParseFunctionCall...
CVE-2022-44319
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the StdioBasePrintf function in cstdlib/string.c when called from ExpressionParseFunctionCall...
Heap overflow
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the StdioBasePrintf function in cstdlib/string.c when called from ExpressionParseFunctionCall...
Heap overflow
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the StringStrcat function in cstdlib/string.c when called from ExpressionParseFunctionCall...
CVE-2022-44317
CVE-2022-44317 affects PicoC 3.2.2. A heap buffer overflow occurs in the StdioOutPutc function in stdlib/stdio.c when called from ExpressionParseFunctionCall. CVSS metrics in the initial record show a base score of 5.5 (Medium) with LOCAL attack vector, LOW attack complexity, no privileges requir...
CVE-2022-44319
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the StdioBasePrintf function in cstdlib/string.c when called from ExpressionParseFunctionCall...
CVE-2022-44314
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the StringStrncpy function in cstdlib/string.c when called from ExpressionParseFunctionCall...
CVE-2022-44318
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the StringStrcat function in cstdlib/string.c when called from ExpressionParseFunctionCall...
CVE-2022-44317
PicoC Version 3.2.2 was discovered to contain a heap buffer overflow in the StdioOutPutc function in cstdlib/stdio.c when called from ExpressionParseFunctionCall...
CVE-2022-44319
PicoC 3.2.2 is affected by a heap buffer overflow in StdioBasePrintf (stdlib/string.c) triggered when called via ExpressionParseFunctionCall. Documented impact and details: CVE-2022-44319 with CVSS v3.1 metrics showing a local attacker can cause high availability impact; base score 5.5 (Medium), ...
CVE-2022-44318
CVE-2022-44318 affects PicoC 3.2.2, with a heap buffer overflow in the StringStrcat function (stdlib/string.c) when invoked via ExpressionParseFunctionCall. Root cause: improper handling during string concatenation leading to a heap overflow. Impact stated as availability-related (HIGH) in CVSS d...
CVE-2019-16277
PicoC 2.1 has a heap-based buffer overflow in StringStrcpy in cstdlib/string.c when called from ExpressionParseFunctionCall in expression.c...
Heap overflow
PicoC 2.1 has a heap-based buffer overflow in StringStrcpy in cstdlib/string.c when called from ExpressionParseFunctionCall in expression.c...
CVE-2019-16277
PicoC 2.1 is affected by CVE-2019-16277 due to a heap-based buffer overflow in StringStrcpy in cstdlib/string.c when invoked from ExpressionParseFunctionCall in expression.c. The Red Hat entry confirms impact on PicoC 2.1; other references consistently describe the same issue. No exploit or mitig...
CVE-2019-16277
PicoC 2.1 has a heap-based buffer overflow in StringStrcpy in cstdlib/string.c when called from ExpressionParseFunctionCall in expression.c...