Problemunvalidated

Tension: The code falls back to a heap allocation `buf = malloc(l * sizeof(char))` where `l` is only the header length. Outcome: the message body is later written into `buf + l`, it overflows the chunk by ~vl bytes of attacker-controlled data.

8be68fbe-a405-4830-b0b4-bedb47417ac6

Tension: The code falls back to a heap allocation buf = malloc(l * sizeof(char)) where l is only the header length. Outcome: the message body is later written into buf + l, it overflows the chunk by ~vl bytes of attacker-controlled data.