KissFFT Integer Overflow Heap Buffer Overflow via kiss_fft_alloc

KissFFT versions prior to the fix commit 1b083165 contain an integer overflow in kiss_fft_alloc() in kiss_fft.c on platforms where size_t is 32-bit. The nfft parameter is not validated before being used in a size calculation (sizeof(kiss_fft_cpx) * (nfft - 1)), which can wrap to a small value when nfft is large. As a result, malloc() allocates an undersized buffer and the subsequent twiddle-factor initialization loop writes nfft elements, causing a heap buffer overflow. This vulnerability only affects 32-bit architectures.

N/A

整数溢出或超界折返

KISS FFT 输入验证错误漏洞

KISS FFT是mborgerding个人开发者的一个傅里叶变换计算库。 KISS FFT 1b083165之前版本存在输入验证错误漏洞，该漏洞源于kiss_fft.c中函数kiss_fft_alloc存在整数溢出，可能导致堆缓冲区溢出。

N/A

N/A