CVE-2025-14607: Uninitialized Padding Byte
A buffer is allocated with size `$LEN + 2`, but the byte at `$VAL[$LEN+1]` remains uninitialized. When string length padding occurs (e.g. enforcing even attribute lengths), this can lead to memory corruption or uninitialized memory reads. Ensure both padding bytes are zeroed out.
Provally CuratedPublic repositoryHighMedium confidenceVerifiedApache-2.0
C++β
C++βgreprules fetch cve-2025-14607-uninitialized-padding-byte --engine opengrepDescription
A buffer is allocated with size `$LEN + 2`, but the byte at `$VAL[$LEN+1]` remains uninitialized. When string length padding occurs (e.g. enforcing even attribute lengths), this can lead to memory corruption or uninitialized memory reads. Ensure both padding bytes are zeroed out.
Community feedback
0 signals from signed-in users.
- Useful
- 0
- False positive
- 0
- Metadata
- 0