Integer overflow in _nv000053X function leads to buffer overflow.
vulners.com/securityvulns/securityvulns:doc:14728
vulners.com/securityvulns/securityvulns:doc:14917