exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2002-2439

около 6 лет назад

operator new[] sometimes returns pointers to heap blocks which are too small. When a new array is allocated, the C++ run-time has to calculate its size. The product may exceed the maximum value which can be stored in a machine register. This error is ignored, and the truncated value is used for the heap allocation. This may lead to heap overflows and therefore security bugs. (See http://cert.uni-stuttgart.de/advisories/calloc.php for further references.)

CVSS3: 7.8

EPSS: Низкий

CVE-2002-2439

больше 23 лет назад

Integer overflow in the new[] operator in gcc before 4.8.0 allows attackers to have unspecified impacts.

CVSS2: 3.7

EPSS: Низкий

CVE-2002-2439

около 6 лет назад

Integer overflow in the new[] operator in gcc before 4.8.0 allows attackers to have unspecified impacts.

CVSS3: 7.8

EPSS: Низкий

CVE-2002-2439

около 6 лет назад

Integer overflow in the new[] operator in gcc before 4.8.0 allows atta ...

CVSS3: 7.8

EPSS: Низкий

GHSA-mm8j-7g3h-x2mj

больше 3 лет назад

Integer overflow in the new[] operator in gcc before 4.8.0 allows attackers to have unspecified impacts.

CVSS3: 7.8

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2002-2439 operator new[] sometimes returns pointers to heap blocks which are too small. When a new array is allocated, the C++ run-time has to calculate its size. The product may exceed the maximum value which can be stored in a machine register. This error is ignored, and the truncated value is used for the heap allocation. This may lead to heap overflows and therefore security bugs. (See http://cert.uni-stuttgart.de/advisories/calloc.php for further references.)	CVSS3: 7.8	0% Низкий	около 6 лет назад
CVE-2002-2439 Integer overflow in the new[] operator in gcc before 4.8.0 allows attackers to have unspecified impacts.	CVSS2: 3.7	0% Низкий	больше 23 лет назад
CVE-2002-2439 Integer overflow in the new[] operator in gcc before 4.8.0 allows attackers to have unspecified impacts.	CVSS3: 7.8	0% Низкий	около 6 лет назад
CVE-2002-2439 Integer overflow in the new[] operator in gcc before 4.8.0 allows atta ...	CVSS3: 7.8	0% Низкий	около 6 лет назад
GHSA-mm8j-7g3h-x2mj Integer overflow in the new[] operator in gcc before 4.8.0 allows attackers to have unspecified impacts.	CVSS3: 7.8	0% Низкий	больше 3 лет назад

Уязвимостей на страницу