CVE-2023-50010: Cve 2023 50010 Gradfun Overread

An off-by-one arithmetic condition where reading at index ($Y + $R) requires bounding $Y + 1 < $HEIGHT - $R to avoid an out-of-bounds read. Use strict checks when iterating over multidimensional boundary conditions.

Provally CuratedPublic repositoryMediumMedium confidenceVerifiedApache-2.0c

greprules fetch cve-2023-50010-cve-2023-50010-gradfun-overread --engine opengrep

Description

An off-by-one arithmetic condition where reading at index ($Y + $R) requires bounding $Y + 1 < $HEIGHT - $R to avoid an out-of-bounds read. Use strict checks when iterating over multidimensional boundary conditions.

Detection target

Not provided

Recommended fix

Not provided

False-positive notes

Not provided

License: Apache-2.0
Source context: Public repository
Source: Provally CVE rule catalog
Validation status: Verified
Trust signals: 108 downloads
0 direct108 via packs
· 0 stars · Trust score 61How trust works
Included packs: 2 packs

Community feedback

Sign in to report false positives, mark this rule useful, or suggest metadata improvements.

Mark useful Report false positive Suggest metadata