CVE-2023-31129
Contiki-NG CVE-2023-31129 affects versions ≤ 4.8. The IPv6 Neighbor Discovery implementation in os/net/ipv6/uip-nd6.c dereferences a NULL pointer when handling Router Solicitation (RS) messages that include an SLLAO indicating a link-layer address change and could create a neighbor entry for that...