Heap-Based Buffer Overflow

2023-04-1009:38:26

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

heap-based buffer overflow

libadmesh.so

stl_fix_normal_directions

normals.c

software security

EPSS

0.002

Percentile

54.9%

JSON

libadmesh.so is vulnerable to Heap-Based Buffer Overflow. An attacker is able to cause buffer overflows by parsing a specially crafted stl file with malicious content through the stl_fix_normal_directions function in normals.c.

References

github.com/admesh/admesh/commit/5fab257268a0ee6f832c18d72af89810a29fbd5f

github.com/admesh/admesh/issues/60

talosintelligence.com/vulnerability_reports/TALOS-2022-1594

EPSS

0.002

Percentile

54.9%

JSON

Related for VERACODE:40093