CVE-2020-17442
CVE-2020-17442 affects picoTCP (and picoTCP-NG) 1.7.0. The issue is in parsing IPv6 hop-by-hop extension headers, where the header length bound is not validated, enabling integer wraparound and a potential DoS in pico_ipv6_process_hopbyhop(). Public details are provided in the SUSE/FORESA advisor...