CVE-2019-19930

Name of the Vulnerable Software and Affected Versions libIEC61850 version 1.4.0

Description The issue is related to an integer signedness error in the MmsValue newOctetString function, located in the mms/iso mms/common/mms value.c file. This error can lead to an attempted excessive memory allocation.

Recommendations For libIEC61850 version 1.4.0, consider applying a patch or fix to address the integer signedness error in the MmsValue newOctetString function to prevent excessive memory allocation attempts. At the moment, there is no information about a newer version that contains a fix for this vulnerability.