Out-of-bounds Write vulnerability in TCP stack of Apache NuttX (incubating) versions up to and including 9.1.0 and 10.0.0 allows attacker to corrupt memory by supplying arbitrary urgent data pointer offsets within TCP packets including beyond the length of the packet.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2020/12/09/4 | Mailing List Third Party Advisory |
https://lists.apache.org/thread.html/r7f4215aba288660b41b7e731b6262c8275fa476e91e527a74d2888ea%40%3Cdev.nuttx.apache.org%3E | Mailing List Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: apache
Published: 2020-12-09T16:35:13
Updated: 2020-12-09T18:06:13
Reserved: 2020-08-12T00:00:00
Link: CVE-2020-17528
JSON object: View
NVD Information
Status : Modified
Published: 2020-12-09T17:15:29.900
Modified: 2023-11-07T03:19:13.627
Link: CVE-2020-17528
JSON object: View
Redhat Information
No data.
CWE