CVE-2017-6949

An issue was discovered in CHICKEN Scheme through 4.12.0. When using a nonstandard CHICKEN-specific extension to allocate an SRFI-4 vector in unmanaged memory, the vector size would be used in unsanitised form as an argument to malloc(). With an unexpected size, the impact may have been a segfault or buffer overflow.
Configurations

Configuration 1 (hide)

cpe:2.3:a:call-cc:chicken:4.12.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2017-03-16 17:59

Updated : 2024-02-04 19:11


NVD link : CVE-2017-6949

Mitre link : CVE-2017-6949

CVE.ORG link : CVE-2017-6949


JSON object : View

Products Affected

call-cc

  • chicken
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer