CVE-2025-66646
CVE-2025-66646 affects RIOT OS, specifically in the IPv6 fragmentation reassembly (gnrc_ipv6_ext_frag). When a fragmented IPv6 packet with fragment offset 0 and an empty payload is processed, the payload pointer is set to NULL but the code still copies into the reassembly buffer, causing a NULL p...