3 matches found
CVE-2020-12883
Buffer over-reads were discovered in the CoAP library in Arm Mbed OS 5.15.3. The CoAP parser is responsible for parsing received CoAP packets. The function sncoapparseroptionsparse parses CoAP input linearly using a while loop. Once an option is parsed in a loop, the current point packetdatapptr ...
CVE-2020-12883
CVE-2020-12883 affects the CoAP library in ARM Mbed OS 5.15.3. The vulnerability arises in sn_coap_parser_options_parse(), which parses CoAP input linearly but fails to verify the input length against bytes read when processing extended option delta/length, and computes message_left incorrectly f...
CVE-2020-12883
Buffer over-reads were discovered in the CoAP library in Arm Mbed OS 5.15.3. The CoAP parser is responsible for parsing received CoAP packets. The function sncoapparseroptionsparse parses CoAP input linearly using a while loop. Once an option is parsed in a loop, the current point packetdatapptr ...