Details

    • Type: Bug
    • Status: Public
    • Priority: High
    • Resolution: Done
    • Affects versions: v1.9.0, v1.10.0, v1.11.0
    • Fix versions: v1.14.0
    • Components: None
    • Security Level: Public
    • Labels:
      None
    • CPE-ID:
      CVE-2017-14199

      Description

      A buffer overflow has been found in getaddrinfo(). Patch with fix has been provided by reporter in https://github.com/zephyrproject-rtos/zephyr/pull/6158

      This seems to affect older versions, so backporting to 1.10 and 1.9 is advisable.

      Due to the severity (externally controllable), I would even assign a CVE number.

        Attachments

          Activity

            People

            • Assignee:
              leandro.pereira Leandro Pereira (Inactive)
              Reporter:
              leandro.pereira Leandro Pereira (Inactive)
              Authorized viewers:
              Maureen Helm
            • Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: