Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2025-34297

Опубликовано: 01 дек. 2025
Источник: debian
EPSS Низкий

Описание

KissFFT versions prior to the fix commit 1b083165 contain an integer overflow in kiss_fft_alloc() in kiss_fft.c on platforms where size_t is 32-bit. The nfft parameter is not validated before being used in a size calculation (sizeof(kiss_fft_cpx) * (nfft - 1)), which can wrap to a small value when nfft is large. As a result, malloc() allocates an undersized buffer and the subsequent twiddle-factor initialization loop writes nfft elements, causing a heap buffer overflow. This vulnerability only affects 32-bit architectures.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
kissfftunfixedpackage
kissfftno-dsatrixiepackage
kissfftno-dsabookwormpackage
kissfftpostponedbullseyepackage

Примечания

  • https://github.com/mborgerding/kissfft/issues/120

  • Fixed by: https://github.com/mborgerding/kissfft/commit/1b08316582049c3716154caefc0deab8758506e3

EPSS

Процентиль: 7%
0.00025
Низкий

Связанные уязвимости

nvd логотип

CVE-2025-34297

nvd
4 месяца назад

KissFFT versions prior to the fix commit 1b083165 contain an integer overflow in kiss_fft_alloc() in kiss_fft.c on platforms where size_t is 32-bit. The nfft parameter is not validated before being used in a size calculation (sizeof(kiss_fft_cpx) * (nfft - 1)), which can wrap to a small value when nfft is large. As a result, malloc() allocates an undersized buffer and the subsequent twiddle-factor initialization loop writes nfft elements, causing a heap buffer overflow. This vulnerability only affects 32-bit architectures.

msrc логотип

CVE-2025-34297

msrc
4 месяца назад

KissFFT Integer Overflow Heap Buffer Overflow via kiss_fft_alloc

github логотип

GHSA-4q9h-j8g6-f49h

github
4 месяца назад

KissFFT versions prior to the fix commit 1b083165 contain an integer overflow in kiss_fft_alloc() in kiss_fft.c on platforms where size_t is 32-bit. The nfft parameter is not validated before being used in a size calculation (sizeof(kiss_fft_cpx) * (nfft - 1)), which can wrap to a small value when nfft is large. As a result, malloc() allocates an undersized buffer and the subsequent twiddle-factor initialization loop writes nfft elements, causing a heap buffer overflow. This vulnerability only affects 32-bit architectures.

EPSS

Процентиль: 7%
0.00025
Низкий