Texas Instruments TI-RTOS, when configured to use HeapMem heap(default),
malloc returns a valid pointer to a small buffer on extremely large
values, which can trigger an integer overflow vulnerability in
'HeapMem_allocUnprotected' and result in code execution.
References
Link | Resource |
---|---|
https://www.cisa.gov/news-events/ics-advisories/icsa-21-119-04 | Third Party Advisory US Government Resource |
https://www.ti.com/tool/TI-RTOS-MCU | Product |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2023-11-21T17:41:08.040Z
Updated: 2023-11-21T17:41:08.040Z
Reserved: 2021-02-19T17:45:42.346Z
Link: CVE-2021-27502
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-11-21T18:15:07.510
Modified: 2023-12-01T20:53:31.073
Link: CVE-2021-27502
JSON object: View
Redhat Information
No data.
CWE