3 matches found
CVE-2018-6480
A type confusion issue was discovered in CCN-lite 2, leading to a memory access violation and a failure of the nonce feature which, for example, helped with loop prevention. ccnlfwdhandleInterest assumes that the union member s is of type ccnlpktdetailndntlvs. However, if the type is in fact stru...
CVE-2018-6480
A type confusion issue was discovered in CCN-lite 2, leading to a memory access violation and a failure of the nonce feature which, for example, helped with loop prevention. ccnlfwdhandleInterest assumes that the union member s is of type ccnlpktdetailndntlvs. However, if the type is in fact stru...
CVE-2018-6480
CVE-2018-6480 describes a type confusion in CCN-lite 2. The bug occurs in ccnl_fwd_handleInterest, which assumes the union member s is of type ccnl_pktdetail_ndntlv_s; if the actual type is ccnl_pktdetail_ccntlv_s or ccnl_pktdetail_iottlv_s, the code may access uninitialized memory or data that i...