2 matches found
CVE-2016-2851
CVE-2016-2851 affects libotr (Off-the-Record Messaging Library). The description and connected documents confirm an integer overflow in libotr’s proto.c on 64-bit platforms, leading to a heap-based overflow when processing large OTR messages. This can cause a denial of service (memory corruption ...
CVE-2012-3461
The CVE-2012-3461 issue affects the libotr library (Base64 decoding paths: otrl_base64_otr_decode in b64.c; data read/accept in proto.c; and decode in toolkit/parse.c). Public docs indicate that before 3.2.1, libotr allocated a zero-length or insufficient buffer during base64 decoding, enabling a...