An issue in coap_pdu.c
in libcoap 4.3.4 allows attackers to cause undefined behavior via a sequence of messages leading to unsigned integer overflow.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 10 | all | libcoap | < 4.1.2-1 | libcoap_4.1.2-1_all.deb |
Debian | 11 | all | libcoap2 | < 4.2.1-1 | libcoap2_4.2.1-1_all.deb |
Debian | 10 | all | libcoap2 | < 4.2.0-2 | libcoap2_4.2.0-2_all.deb |
Debian | 12 | all | libcoap3 | <= 4.3.1-1 | libcoap3_4.3.1-1_all.deb |
Debian | 999 | all | libcoap3 | <= 4.3.4-1.1 | libcoap3_4.3.4-1.1_all.deb |
Debian | 13 | all | libcoap3 | <= 4.3.4-1.1 | libcoap3_4.3.4-1.1_all.deb |