Gửi #654060: Open Babel 3.1.1 / master commit 889c350 Heap-based Buffer Overflowthông tin

tiêu đềOpen Babel 3.1.1 / master commit 889c350 Heap-based Buffer Overflow
Mô tảOpen Babel 3.1.1 (master commit 889c350) is vulnerable to a heap-buffer-overflow in the OBSmilesParser::ParseSmiles function. When parsing certain malformed SMILES strings, the parser performs an out-of-bounds read on a dynamically allocated vector of integers, resulting in undefined behavior and potential denial of service (DoS). An attacker can exploit this vulnerability by supplying crafted input to applications or tools that rely on Open Babel for SMILES parsing.
Nguồn⚠️ https://github.com/openbabel/openbabel/issues/2831
Người dùng ahuo (UID 90189)
Đệ trình14/09/2025 10:03 (cách đây 10 các tháng)
Kiểm duyệt25/09/2025 20:05 (11 days later)
Trạng tháiđược chấp nhận
Mục VulDB325924 [Open Babel đến 3.1.1 smilesformat.cpp ParseSmiles tràn bộ đệm]
điểm20

Want to know what is going to be exploited?

We predict KEV entries!