10 matches found
EUVD-2024-29855
Malicious code in bioql PyPI...
EUVD-2024-29121
Malicious code in bioql PyPI...
CVE-2024-31225
RIOT is a real-time multi-threading operating system that supports a range of devices that are typically 8-bit, 16-bit and 32-bit microcontrollers. The onrdinit function does not implement a size check before copying data to the resultbuf static buffer. If an attacker can craft a long enough...
CVE-2024-32017
RIOT is a real-time multi-threading operating system that supports a range of devices that are typically 8-bit, 16-bit and 32-bit microcontrollers. The size check in the gcoapdnsserverproxyget function contains a small typo that may lead to a buffer overflow in the subsequent strcpy. In detail, t...
CVE-2024-32017 Buffer overflows in RIOT
RIOT is a real-time multi-threading operating system that supports a range of devices that are typically 8-bit, 16-bit and 32-bit microcontrollers. The size check in the gcoapdnsserverproxyget function contains a small typo that may lead to a buffer overflow in the subsequent strcpy. In detail, t...
CVE-2024-32017 Buffer overflows in RIOT
RIOT is a real-time multi-threading operating system that supports a range of devices that are typically 8-bit, 16-bit and 32-bit microcontrollers. The size check in the gcoapdnsserverproxyget function contains a small typo that may lead to a buffer overflow in the subsequent strcpy. In detail, t...
CVE-2024-32017
CVE-2024-32017 affects RIOT OS. The issue is a buffer overflow in gcoap DNS server proxy logic: a typo causes a length check of _uri instead of _proxy, risking overflow in subsequent strcpy. Additionally, _gcoap_forward_proxy_copy_options() lacks explicit bounds before copying into cep->req_et...
CVE-2024-31225 Lack of size check and buffer overflow in RIOT
RIOT is a real-time multi-threading operating system that supports a range of devices that are typically 8-bit, 16-bit and 32-bit microcontrollers. The onrdinit function does not implement a size check before copying data to the resultbuf static buffer. If an attacker can craft a long enough...
CVE-2024-31225 Lack of size check and buffer overflow in RIOT
RIOT is a real-time multi-threading operating system that supports a range of devices that are typically 8-bit, 16-bit and 32-bit microcontrollers. The onrdinit function does not implement a size check before copying data to the resultbuf static buffer. If an attacker can craft a long enough...
CVE-2024-31225
The CVE-2024-31225 entry concerns RIOT OS. The issue is in the _on_rd_init() function, which does not perform a size check before copying data to the _result_buf static buffer, enabling a potential buffer overflow if an attacker crafts a sufficiently long payload. Impact is described as potential...