High severity7.1NVD Advisory· Published Mar 19, 2018· Updated Jun 17, 2026
CVE-2014-2885
CVE-2014-2885
Description
Multiple integer overflows in TrueCrypt 7.1a allow local users to (1) obtain sensitive information via vectors involving a crafted item->OriginalLength value in the MainThreadProc function in EncryptedIoQueue.c or (2) cause a denial of service (memory consumption) via vectors involving large StartingOffset and Length values in the ProcessVolumeDeviceControlIrp function in Ntdriver.c.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2= 7.1a+ 1 more
- (no CPE)range: = 7.1a
- (no CPE)range: 7.1a
Patches
Vulnerability mechanics
References
2- opencryptoaudit.org/reports/iSec_Final_Open_Crypto_Audit_Project_TrueCrypt_Security_Assessment.pdfnvdVendor Advisory
- www.openwall.com/lists/oss-security/2014/04/17/7nvdIssue TrackingMailing List
News mentions
0No linked articles in our index yet.