3 matches found
CVE-2022-39274 Buffer Overflow in `ProcessRadioRxDone` in LoRaMac-node
LoRaMac-node is a reference implementation and documentation of a LoRa network node. Versions of LoRaMac-node prior to 4.7.0 are vulnerable to a buffer overflow. Improper size validation of the incoming radio frames can lead to an 65280-byte out-of-bounds write. The function ProcessRadioRxDone...
CVE-2022-39274 Buffer Overflow in `ProcessRadioRxDone` in LoRaMac-node
LoRaMac-node is a reference implementation and documentation of a LoRa network node. Versions of LoRaMac-node prior to 4.7.0 are vulnerable to a buffer overflow. Improper size validation of the incoming radio frames can lead to an 65280-byte out-of-bounds write. The function ProcessRadioRxDone...
CVE-2022-39274
CVE-2022-39274 affects LoRaMac-node before v4.7.0. The issue is a buffer overflow caused by improper size validation of incoming radio frames in ProcessRadioRxDone, allowing a 65280-byte out-of-bounds write. An empty payload can trigger a 1-byte out-of-bounds read of user-controlled content when ...