FreeBSD : go -- archive/zip: overflow in preallocation check can cause OOM panic (4ea1082a-1259-11ec-b4fa-dd5a552bdd17)

The Go project reports : An oversight in the previous fix still allows for an OOM panic when the indicated directory size in the archive header is so large that subtracting it from the archive size overflows a uint64, effectively bypassing the check that the number of files in the archive is...

Denial Of Service

archive/zip of go is vulnerable to denial of service. The vulnerability exists due to an OOM Out of Memory from the lack of sanitization of the preallocation directory size in the archive header...

CVE-2008-5245

xine-lib before 1.1.15 performs V4L video frame preallocation before ascertaining the required length, which has unknown impact and attack vectors, possibly related to a buffer overflow in the openvideocapturedevice function in src/input/inputv4l.c...

CVE-2008-5245

xine-lib before 1.1.15 performs V4L video frame preallocation before ascertaining the required length, which has unknown impact and attack vectors, possibly related to a buffer overflow in the openvideocapturedevice function in src/input/inputv4l.c...