Wolfssl 缓冲区错误漏洞

Wolfssl CyaSSL is a small, portable embedded SSL programming library for use by embedded systems developers from Wolfssl, Inc. in the United States. A buffer error vulnerability exists in Wolfssl wolfMQTT that stems from the product's failure to properly determine memory boundaries when calling...

Wolfssl 缓冲区错误漏洞

Wolfssl CyaSSL is a small, portable embedded SSL programming library for use by embedded systems developers from Wolfssl, USA. A buffer error vulnerability exists in Wolfssl wolfMQTT that stems from the product's failure to properly determine memory boundaries when calling MqttClientDecodePacket...

CVE-2021-45932

wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow 4 bytes in MqttDecodePublish called from MqttClientDecodePacket and MqttClientHandlePacket...

CVE-2021-45933

wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow 8 bytes in MqttDecodePublish called from MqttClientDecodePacket and MqttClientHandlePacket...

CVE-2021-45934

wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttClientDecodePacket called from MqttClientHandlePacket and MqttClientWaitType...

CVE-2021-45934

The CVE-2021-45934 entry concerns wolfSSL wolfMQTT 1.9 and a heap-based buffer overflow in MqttClient_DecodePacket (invoked by MqttClient_HandlePacket and MqttClient_WaitType). The issue is rooted in how packets are decoded, potentially enabling an overflow condition when handling MQTT packets. C...

CVE-2021-45936

wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttDecodeDisconnect called from MqttClientDecodePacket and MqttClientWaitType...

CVE-2021-45937

wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttClientDecodePacket called from MqttClientWaitType and MqttClientConnect...

CVE-2021-45937

wolfSSL wolfMQTT 1.9 is affected by a heap-based buffer overflow in MqttClient_DecodePacket, invoked from MqttClient_WaitType and MqttClient_Connect. The vulnerability is described across multiple sources (CVE-2021-45937) with root cause in memory boundary checks during decoding; impact includes ...

CVE-2021-45938

wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttClientDecodePacket called from MqttClientWaitType and MqttClientUnsubscribe...

CVE-2021-45939

wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttClientDecodePacket called from MqttClientWaitType and MqttClientSubscribe...

CVE-2021-45939

The CVE-2021-45939 entry concerns wolfSSL wolfMQTT 1.9, where a heap-based buffer overflow occurs in MqttClient_DecodePacket (triggered by MqttClient_WaitType and MqttClient_Subscribe). The connected documents confirm the affected component and the root cause (memory boundary mismanagement leadin...

OSV-2021-1612 Heap-buffer-overflow in MqttDecode_Props

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=41291 Crash type: Heap-buffer-overflow READ 1 Crash state: MqttDecodeProps MqttDecodeDisconnect MqttClientDecodePacket...

OSV-2021-1568 Heap-use-after-free in MqttDecode_Props

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=40904 Crash type: Heap-use-after-free READ 1 Crash state: MqttDecodeProps MqttDecodeDisconnect MqttClientDecodePacket...

OSV-2021-1361 Heap-buffer-overflow in MqttClient_DecodePacket

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=39103 Crash type: Heap-buffer-overflow WRITE 1 Crash state: MqttClientDecodePacket MqttClientWaitType MqttClientSubscribe...

OSV-2021-1358 Heap-buffer-overflow in MqttClient_DecodePacket

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=39094 Crash type: Heap-buffer-overflow READ 8 Crash state: MqttClientDecodePacket MqttClientWaitType MqttClientPingex...

OSV-2021-1353 Heap-buffer-overflow in MqttClient_DecodePacket

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=39056 Crash type: Heap-buffer-overflow WRITE 1 Crash state: MqttClientDecodePacket MqttClientWaitType MqttClientUnsubscribe...

OSV-2021-1349 Heap-buffer-overflow in MqttClient_DecodePacket

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=39083 Crash type: Heap-buffer-overflow WRITE 1 Crash state: MqttClientDecodePacket MqttClientWaitType MqttClientConnect...

OSV-2021-1348 Heap-buffer-overflow in MqttDecode_Disconnect

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=39053 Crash type: Heap-buffer-overflow WRITE 1 Crash state: MqttDecodeDisconnect MqttClientDecodePacket MqttClientWaitType...

OSV-2021-1211 Heap-buffer-overflow in MqttDecode_Publish

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=38237 Crash type: Heap-buffer-overflow WRITE 8 Crash state: MqttDecodePublish MqttClientDecodePacket MqttClientHandlePacket...