EUVD-2019-11328

Malware in sbrugna...

OSV-2017-119 Stack-buffer-overflow in ot::MeshCoP::CommissionerSessionIdTlv::GetCommissionerSessionId

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3376 Crash type: Stack-buffer-overflow READ 2 Crash state: ot::MeshCoP::CommissionerSessionIdTlv::GetCommissionerSessionId ot::NetworkData::Leader::HandleCommissioningSet ot::Coap::Coap::ProcessReceivedRequest...

OSV-2020-2259 Stack-buffer-overflow in ot::MeshCoP::ChannelMaskEntry::GetMask

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28556 Crash type: Stack-buffer-overflow READ 4 Crash state: ot::MeshCoP::ChannelMaskEntry::GetMask ot::MeshCoP::ChannelMaskTlv::GetChannelMask ot::MeshCoP::Dataset::ConvertTo...

OSV-2020-2247 Stack-buffer-overflow in ot::MeshCoP::ChannelMaskEntryBase::GetEntrySize

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=28315 Crash type: Stack-buffer-overflow READ 1 Crash state: ot::MeshCoP::ChannelMaskEntryBase::GetEntrySize ot::MeshCoP::ChannelMaskEntryBase::GetNext ot::MeshCoP::ChannelMaskBaseTlv::IsValid...

OSV-2020-732 Stack-buffer-overflow in ot::MeshCoP::Leader::HandlePetition

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=13537 Crash type: Stack-buffer-overflow READ 1 Crash state: ot::MeshCoP::Leader::HandlePetition ot::Coap::CoapBase::ProcessReceivedRequest ot::Ip6::Udp::HandleMessage...

OSV-2020-729 Stack-buffer-overflow in ot::MeshCoP::Leader::HandlePetition

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=13335 Crash type: Stack-buffer-overflow READ 1 Crash state: ot::MeshCoP::Leader::HandlePetition ot::Coap::CoapBase::ProcessReceivedRequest ot::Ip6::Udp::HandleMessage...

OSV-2020-690 UNKNOWN READ in ot::Coap::CoapBase::RemoveResource

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=13369 Crash type: UNKNOWN READ Crash state: ot::Coap::CoapBase::RemoveResource ot::MeshCoP::BorderAgent::Stop ot::Mle::Mle::SetStateDetached...

OSV-2020-531 Stack-buffer-overflow in ot::MeshCoP::DatasetManager::HandleSet

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15374 Crash type: Stack-buffer-overflow READ 15 Crash state: ot::MeshCoP::DatasetManager::HandleSet ot::MeshCoP::ActiveDataset::HandleSet ot::Coap::CoapBase::ProcessReceivedRequest...

OSV-2020-380 Stack-buffer-overflow in ot::MeshCoP::ChannelMaskEntry::GetMask

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=13619 Crash type: Stack-buffer-overflow READ 4 Crash state: ot::MeshCoP::ChannelMaskEntry::GetMask ot::MeshCoP::ChannelMaskTlv::GetChannelMask ot::MeshCoP::ChannelMaskTlv::GetChannelMask...

OSV-2020-353 Stack-buffer-overflow in ot::MeshCoP::Commissioner::GeneratePskc

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19386 Crash type: Stack-buffer-overflow WRITE Crash state: ot::MeshCoP::Commissioner::GeneratePskc ot::Ncp::NcpBase::HandlePropertySetSPINELPROPMESHCOPCOMMISSIONERGENERATEPS ot::Ncp::NcpBase::HandlePropertySetForSpecialPropert...

OSV-2020-343 Stack-use-after-return in ot::MeshCoP::ChannelMaskEntryBase::GetChannelPage

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=13741 Crash type: Stack-use-after-return READ 1 Crash state: ot::MeshCoP::ChannelMaskEntryBase::GetChannelPage ot::MeshCoP::ChannelMaskTlv::GetChannelMask ot::MeshCoP::ChannelMaskTlv::GetChannelMask...

CVE-2019-20791

OpenThread before 2019-12-13 has a stack-based buffer overflow in MeshCoP::Commissioner::GeneratePskc...

CVE-2019-20791

OpenThread before 2019-12-13 has a stack-based buffer overflow in MeshCoP::Commissioner::GeneratePskc...

Stack overflow

OpenThread before 2019-12-13 has a stack-based buffer overflow in MeshCoP::Commissioner::GeneratePskc...

CVE-2019-20791

CVE-2019-20791 describes a stack-based buffer overflow in OpenThread before 2019-12-13, specifically in MeshCoP::Commissioner::GeneratePskc. The NVD entry lists a base score of 9.8 (CVSS-3.1) with CRITICAL impact, network attack vector, low attack complexity, no privileges required, and no user i...

CVE-2019-20791

OpenThread before 2019-12-13 has a stack-based buffer overflow in MeshCoP::Commissioner::GeneratePskc...

openthread/ip6-send-fuzzer: Stack-buffer-overflow in ot::MeshCoP::DatasetManager::HandleSet

Project: https://github.com/openthread/openthread.git Detailed report: https://oss-fuzz.com/testcase?key=5683612520808448 Project: openthread Fuzzer: aflopenthreadip6-send-fuzzer Fuzz target binary: ip6-send-fuzzer Job Type: aflasanopenthread Platform Id: linux Crash Type: Stack-buffer-overflow...

openthread/ip6-send-fuzzer: Stack-use-after-return in ot::MeshCoP::ChannelMaskEntryBase::GetChannelPage

Project: https://github.com/openthread/openthread.git Detailed report: https://oss-fuzz.com/testcase?key=5153373483958272 Project: openthread Fuzzer: libFuzzeropenthreadip6-send-fuzzer Fuzz target binary: ip6-send-fuzzer Job Type: libfuzzerasanopenthread Platform Id: linux Crash Type:...

openthread/cli-uart-received-fuzzer: Stack-buffer-overflow in ot::MeshCoP::Leader::HandlePetition

Project: https://github.com/openthread/openthread.git Detailed report: https://oss-fuzz.com/testcase?key=5769727228510208 Project: openthread Fuzzer: libFuzzeropenthreadcli-uart-received-fuzzer Fuzz target binary: cli-uart-received-fuzzer Job Type: libfuzzerasanopenthread Platform Id: linux Crash...

openthread: Stack-buffer-overflow in ot::MeshCoP::CommissionerSessionIdTlv::GetCommissionerSessionId

Project: https://github.com/openthread/openthread.git Detailed report: https://oss-fuzz.com/testcase?key=6738146924429312 Project: openthread Fuzzer: libFuzzeropenthreadip6-send-fuzzer Fuzz target binary: ip6-send-fuzzer Job Type: libfuzzerasanopenthread Platform Id: linux Crash Type:...