cpe:/a:csilvers:gperftools:0.1 cpe:/a:csilvers:gperftools:0.2 cpe:/a:csilvers:gperftools:0.3 CVE-2005-4895 2012-07-25T15:55:01.273-04:00 2012-08-09T00:00:00.000-04:00 5.0 NETWORK LOW NONE NONE NONE PARTIAL http://nvd.nist.gov 2012-07-26T08:38:00.000-04:00 CONFIRM http://code.google.com/p/gperftools/source/browse/tags/perftools-0.4/ChangeLog MISC http://kqueue.org/blog/2012/03/05/memory-allocator-security-revisited/ Multiple integer overflows in TCMalloc (tcmalloc.cc) in gperftools before 0.4 make it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large size value, which causes less memory to be allocated than expected.