greprules.io
Sign inSubmit rule
Explore/cve-2025-34468-c-unbounded-memcpy-into-fixed-char-buffer-from-struct-length

CVE-2025-34468: C Unbounded Memcpy Into Fixed Char Buffer From Struct Length

memcpy() copies into a fixed-size local char buffer using a length taken from a struct field, without first checking that the length is less than sizeof(destination). If the struct field is attacker-controlled (e.g. a hostname, URI, or other length-prefixed input), this is a stack-based buffer overflow (CWE-121 / CWE-787). This is the exact root-cause patter

Provally CuratedPublic repositoryHighMedium confidenceVerifiedApache-2.0c
greprules fetch cve-2025-34468-c-unbounded-memcpy-into-fixed-char-buffer-from-struct-length --engine opengrep

Description

memcpy() copies into a fixed-size local char buffer using a length taken from a struct field, without first checking that the length is less than sizeof(destination). If the struct field is attacker-controlled (e.g. a hostname, URI, or other length-prefixed input), this is a stack-based buffer overflow (CWE-121 / CWE-787). This is the exact root-cause patter

Detection target

Not provided

Recommended fix

Not provided

False-positive notes

Not provided

License
Apache-2.0
Source context
Public repository
Source
Provally CVE rule catalog
Validation status
Verified
Trust signals
108 downloads0 direct108 via packs
· 0 stars · Trust score 81How trust works
Included packs
2 packs

Community feedback

Sign in to report false positives, mark this rule useful, or suggest metadata improvements.

Mark usefulReport false positiveSuggest metadata