CVE-2012-2675

Name of the Vulnerable Software and Affected Versions nedmalloc versions prior to 1.10 beta2

Description The issue is related to multiple integer overflows in the CallMalloc (malloc) and nedpcalloc (calloc) functions in nedmalloc. This makes it easier for attackers to perform memory-related attacks, such as buffer overflows, via a large size value. The overflows cause less memory to be allocated than expected, potentially leading to memory-related issues.

Recommendations For versions prior to 1.10 beta2, update to version 1.10 beta2 or later to resolve the issue. As a temporary workaround, consider restricting the use of large size values in the CallMalloc and nedpcalloc functions to minimize the risk of exploitation.