4 matches found
CVE-2026-26399
A stack-use-after-return issue exists in the ArduinoCoreSTM32 library prior to version 1.7.0. The pwmstart function allocates a TIMHandleTypeDef structure on the stack and passes its address to HAL initialization routines, where it is stored in a global timer handle registry. After the function...
EUVD-2026-23912
A stack-use-after-return issue exists in the ArduinoCoreSTM32 library prior to version 1.7.0. The pwmstart function allocates a TIMHandleTypeDef structure on the stack and passes its address to HAL initialization routines, where it is stored in a global timer handle registry. After the function...
CVE-2026-26399
A stack-use-after-return issue exists in the ArduinoCoreSTM32 library prior to version 1.7.0. The pwmstart function allocates a TIMHandleTypeDef structure on the stack and passes its address to HAL initialization routines, where it is stored in a global timer handle registry. After the function...
CVE-2026-26399
Summary of CVE-2026-26399 (Arduino_Core_STM32) : A stack-use-after-return vulnerability exists in the Arduino Core STM32 library for versions prior to 1.7.0. The function pwm_start() allocates a TIM_HandleTypeDef on the stack and passes its address to HAL initialization routines, which store a re...