Out-of-bounds Write Affecting adamdunkels/uip package, versions [0,]


Severity

Recommended
0.0
high
0
10

CVSS assessment made by Snyk's Security Team. Learn more

Threat Intelligence

EPSS
0.19% (58th percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • Snyk IDSNYK-UNMANAGED-ADAMDUNKELSUIP-2367444
  • published26 Jan 2022
  • disclosed11 Dec 2020
  • creditUnknown

Introduced: 11 Dec 2020

CVE-2020-17437  (opens in a new tab)
CWE-787  (opens in a new tab)

How to fix?

There is no fixed version for adamdunkels/uip.

Overview

Affected versions of this package are vulnerable to Out-of-bounds Write. An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. When the Urgent flag is set in a TCP packet, and the stack is configured to ignore the urgent data, the stack attempts to use the value of the Urgent pointer bytes to separate the Urgent data from the normal data, by calculating the offset at which the normal data should be present in the global buffer. However, the length of this offset is not checked; therefore, for large values of the Urgent pointer bytes, the data pointer can point to memory that is way beyond the data buffer in uip_process in uip.c.

CVSS Base Scores

version 3.1