1 vulnerabilities classified as CWE-469 (使用指针的减法来确定大小). AI Chinese analysis included.
CWE-469 represents a logical weakness where software incorrectly calculates memory size by subtracting two pointers, assuming they reside within the same contiguous memory block. This flaw typically arises when developers derive buffer lengths from arbitrary pointers that may point to unrelated or non-contiguous data structures. Exploitation often leads to severe memory corruption, such as buffer overflows or underflows, because the resulting size calculation is inaccurate, causing subsequent read or write operations to access out-of-bounds memory regions. Attackers can leverage these miscalculations to execute arbitrary code or crash the application. To prevent this vulnerability, developers should explicitly track and pass buffer sizes alongside pointers rather than inferring them through arithmetic. Additionally, using safe, high-level abstractions that manage memory bounds automatically ensures that size calculations remain accurate and secure, eliminating the risk associated with pointer arithmetic assumptions.
struct node { int data; struct node* next; }; // Returns the number of nodes in a linked list from // the given pointer to the head of the list. int size(struct node* head) { struct node* current = head; struct node* tail; while (current != NULL) { tail = current; current = current->next; } return tail - head; } // other methods for manipulating the list ...... int size(struct node* head) { struct node* current = head; int count = 0; while (current != NULL) { count++; current = current->next; } return count; }| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2019-25595 | jetAudio 8.1.7.20702 Basic Denial of Service via URL Handler — jetAudio | 6.2 | Medium | 2026-03-22 |
Vulnerabilities classified as CWE-469 (使用指针的减法来确定大小) represent 1 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.