CVE-2024-34403: Integer Overflow Allocation After Increment
A length variable is incremented and then multiplied by `sizeof` in an allocation call without safe bounds checking. This risks an integer overflow (both from the increment and the multiplication), potentially causing an undersized allocation and heap buffer overflow. Ensure strict checks against `INT_MAX`/`SIZE_MAX` or, ideally, use `calloc` directly.
Provally CuratedPublic repositoryHighMedium confidenceVerifiedApache-2.0
Cβ
Cβgreprules fetch cve-2024-34403-integer-overflow-allocation-after-increment --engine opengrepDescription
A length variable is incremented and then multiplied by `sizeof` in an allocation call without safe bounds checking. This risks an integer overflow (both from the increment and the multiplication), potentially causing an undersized allocation and heap buffer overflow. Ensure strict checks against `INT_MAX`/`SIZE_MAX` or, ideally, use `calloc` directly.
Community feedback
0 signals from signed-in users.
- Useful
- 0
- False positive
- 0
- Metadata
- 0