You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hi, there are potential integer overflow vulnerabilities that can affect the 32bit system.
In src/util/output.c:59, the program reads the value of numOfVars from input file and calls createVector.
fscanf(in,"%d",numOfVars);
if (numOfVectors==0) return (0);
b=createVector(*numOfVars);
Since there is no range check in createVector, it may cause integer overflow and small buffer allocation which leads to buggy behavior.
vectorcreateVector(intnumOfVars) {
vectorw;
w= (vector)malloc(sizeof(int)*(numOfVars+1));
if (w==0) {
printf("Could not allocate memory in function createVector.\n");
printf("Please report this problem.\n");
exit(0);
}
return (w);
}
Hi, there are potential integer overflow vulnerabilities that can affect the 32bit system.
In src/util/output.c:59, the program reads the value of
numOfVars
from input file and callscreateVector
.Since there is no range check in
createVector
, it may cause integer overflow and small buffer allocation which leads to buggy behavior.Similar issues can happen in
4ti2/src/util/output.c
Line 720 in 4d70ab9
4ti2/src/util/output.c
Line 859 in 4d70ab9
Thank you.
The text was updated successfully, but these errors were encountered: