2 matches found
Siemens SIMATIC S7-1500 Integer Overflow or Wraparound (CVE-2025-29087)
In SQLite, the concatws SQL function can cause memory to be written beyond the end of a malloc-allocated buffer. If the separator argument is attacker-controlled and has a large string e.g., 2MB or more, an integer overflow occurs in calculating the size of the result buffer, and thus malloc may...
SUSE CVE-2019-8354
An issue was discovered in SoX 14.4.2. lsxmakelpf in effectidsp.c has an integer overflow on the result of multiplication fed into malloc. When the buffer is allocated, it is smaller than expected, leading to a heap-based buffer overflow...