Integer overflow in parse_decode_path() of slocate may allow malicious users to execute arbitrary code via a LOCATE_PATH with a large number of ":" (colon) characters, whose count is used in a call to malloc.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
slocate slocate |