Insufficient publish message length validation in MQTT

Description

The Zephyr MQTT parsing code performs insufficient checking of the length field on publish messages, allowing a buffer overflow and potentially remote code execution. NCC-ZEP-031

Environment

None

Assignee

Robert Lubos

Reporter

David Brown

Labels

None

Authorized viewers

None

CVE

CVE-2020-10071

Embargo Lift

2020/05/25

Components

Fix versions

Affects versions

Priority

Highest
Configure