Integer overflow in parse_decode_path() of slocate may allow attackers to execute arbitrary code via a LOCATE_PATH with a large number of : (colon) characters, whose count is used in a call to malloc.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Slocate | Slocate | * | * |