Skip to main content

Numeric Errors

CVE-2005-4895

Severity Medium
Score 5/10

Summary

In "gperftools" before 0.4, multiple integer overflows exist in "TCMalloc" ("tcmalloc.cc"), that make it easier for context-dependent attackers to perform memory-related attacks such as Buffer Overflows via a large size value, which causes less memory to be allocated than expected. NOTE: The affected versions of this package are not available in a package manager we support.

  • LOW
  • NETWORK
  • NONE
  • NONE
  • NONE
  • PARTIAL

CWE-189 - Numeric Errors

Weaknesses in this category are related to improper calculation or conversion of numbers.

Advisory Timeline

  • Published