CVE-2026-41445: CWE-190 Integer Overflow or Wraparound in mborgerding kissfft
KissFFT before commit 8a8e66e contains an integer overflow vulnerability in the kiss_fftndr_alloc() function in kiss_fftndr.c where the allocation size calculation dimOther*(dimReal+2)*sizeof(kiss_fft_scalar) overflows signed 32-bit integer arithmetic before being widened to size_t, causing malloc() to allocate an undersized buffer. Attackers can trigger heap buffer overflow by providing crafted dimensions that cause the multiplication to exceed INT_MAX, allowing writes beyond the allocated buffer region when kiss_fftndr() processes the data.
AI Analysis
Technical Summary
The mborgerding kissfft library versions before commit 8a8e66e contain an integer overflow in the kiss_fftndr_alloc() function. Specifically, the calculation dimOther*(dimReal+2)*sizeof(kiss_fft_scalar) is performed using signed 32-bit arithmetic, which can overflow before being converted to size_t for malloc(). This results in an undersized buffer allocation. When kiss_fftndr() processes data with dimensions crafted to trigger this overflow, it can write beyond the allocated buffer, causing a heap buffer overflow vulnerability.
Potential Impact
An attacker can exploit this vulnerability by providing specially crafted input dimensions that cause the integer overflow in the allocation size calculation. This leads to heap buffer overflow, which may result in memory corruption, application crashes, or potentially arbitrary code execution depending on the context of use. There are no known exploits in the wild at this time.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. No official fix or patch links are currently available. Users should monitor the mborgerding kissfft project for updates or commits addressing this issue. Until a patch is available, avoid processing untrusted input with vulnerable versions of kissfft or implement input validation to restrict dimension values to safe ranges.
CVE-2026-41445: CWE-190 Integer Overflow or Wraparound in mborgerding kissfft
Description
KissFFT before commit 8a8e66e contains an integer overflow vulnerability in the kiss_fftndr_alloc() function in kiss_fftndr.c where the allocation size calculation dimOther*(dimReal+2)*sizeof(kiss_fft_scalar) overflows signed 32-bit integer arithmetic before being widened to size_t, causing malloc() to allocate an undersized buffer. Attackers can trigger heap buffer overflow by providing crafted dimensions that cause the multiplication to exceed INT_MAX, allowing writes beyond the allocated buffer region when kiss_fftndr() processes the data.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The mborgerding kissfft library versions before commit 8a8e66e contain an integer overflow in the kiss_fftndr_alloc() function. Specifically, the calculation dimOther*(dimReal+2)*sizeof(kiss_fft_scalar) is performed using signed 32-bit arithmetic, which can overflow before being converted to size_t for malloc(). This results in an undersized buffer allocation. When kiss_fftndr() processes data with dimensions crafted to trigger this overflow, it can write beyond the allocated buffer, causing a heap buffer overflow vulnerability.
Potential Impact
An attacker can exploit this vulnerability by providing specially crafted input dimensions that cause the integer overflow in the allocation size calculation. This leads to heap buffer overflow, which may result in memory corruption, application crashes, or potentially arbitrary code execution depending on the context of use. There are no known exploits in the wild at this time.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. No official fix or patch links are currently available. Users should monitor the mborgerding kissfft project for updates or commits addressing this issue. Until a patch is available, avoid processing untrusted input with vulnerable versions of kissfft or implement input validation to restrict dimension values to safe ranges.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- VulnCheck
- Date Reserved
- 2026-04-20T16:07:47.308Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69e6585619fe3cd2cd13fdef
Added to database: 4/20/2026, 4:46:14 PM
Last enriched: 4/20/2026, 5:01:08 PM
Last updated: 4/20/2026, 7:10:22 PM
Views: 6
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.