Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in lib_mem.c in Micrium uC/OS uC/LIB 1.38.x and 1.39.00. The following memory allocation functions do not check for integer overflow when allocating a pool whose size exceeds the address space: Mem_PoolCreate, Mem_DynPoolCreate, and Mem_DynPoolCreateHW. Because these functions use multiplication to calculate the pool sizes, the operation may cause an integer overflow if the arguments are large enough. The resulting memory pool will be smaller than expected and may be exploited by an attacker.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
uC-OS2 输入验证错误漏洞
Vulnerability Description
uC-OS2是一个操作系统。用于微处理器,微控制器和DSP的便携式,可ROM,可扩展,抢占式实时确定性多任务内核。 uC-OS2 版本及之前版本存在输入验证错误漏洞,该漏洞源于未验证的内存分配可能导致任意的内存分配,从而导致一些意想不到的行为,比如分配非常小的内存块,而不是非常大的内存块。
CVSS Information
N/A
Vulnerability Type
N/A