glibc: Integer overflows, leading to stack-based buffer overflows in strto* related routines

Multiple integer overflows in the 1 strtod, 2 strtof, 3 strtold, 4 strtodl, and other unspecified "related functions" in stdlib in GNU C Library aka glibc or libc6 2.16 allow local users to cause a denial of service application crash and possibly execute arbitrary code via a long string, which...

PT-2012-1186 · Gnu +3 · Gnu C Library +3

Name of the Vulnerable Software and Affected Versions: GNU C Library aka glibc or libc6 version 2.16 Description: The issue is caused by multiple integer overflows in various functions, including strtod, strtof, strtold, and strtod l, within the stdlib component of the GNU C Library. This can lea...