GNU Multiple Precision Arithmetic Library (GMP) through 6.2.1 has an mpz/inp_raw.c integer overflow and resultant buffer overflow via crafted input, leading to a segmentation fault on 32-bit platforms.
CPE | Name | Operator | Version |
---|---|---|---|
debian_linux | eq | 9.0 | |
gmp | le | 6.2.1 |
seclists.org/fulldisclosure/2022/Oct/8
www.openwall.com/lists/oss-security/2022/10/13/3
bugs.debian.org/994405
gmplib.org/list-archives/gmp-bugs/2021-September/005077.html
gmplib.org/repo/gmp-6.2/rev/561a9c25298e
lists.debian.org/debian-lts-announce/2021/12/msg00001.html
security.gentoo.org/glsa/202309-13
security.netapp.com/advisory/ntap-20221111-0001/