CVE-2024-2212

Summary: CVE-2024-2212 affects Eclipse ThreadX prior to 6.4.0 due to missing parameter checks in the FreeRTOS compatibility API functions xQueueCreate() and xQueueCreateSet() (utility/rtos_compatibility_layers/FreeRTOS/tx_freertos.c). This can cause integer wraparound, under-allocations, and heap...

CVE-2024-2212 Integer wraparounds, under-allocations, and heap buffer overflows in Eclipse ThreadX xQueueCreate() and xQueueCreateSet()

In Eclipse ThreadX before 6.4.0, xQueueCreate and xQueueCreateSet functions from the FreeRTOS compatibility API utility/rtoscompatibilitylayers/FreeRTOS/txfreertos.c were missing parameter checks. This could lead to integer wraparound, under-allocations and heap buffer overflows...

Eclipse ThreadX RTOS 输入验证错误漏洞

Eclipse ThreadX RTOS is an advanced real-time operating system RTOS from Eclipse ThreadX designed for deeply embedded applications. A security vulnerability exists in Eclipse ThreadX RTOS versions prior to 6.4.0, which stems from a buffer overflow vulnerability due to a lack of parameter checking...

PT-2024-19216 · Eclipse · Eclipse Threadx

Name of the Vulnerable Software and Affected Versions: Eclipse ThreadX versions prior to 6.4.0 Description: The issue arises from missing parameter checks in the xQueueCreate and xQueueCreateSet functions from the FreeRTOS compatibility API. This could lead to integer wraparound, under-allocation...