Stack overflow vulnerability in Contiki-NG os/net/ipv6/tcpip.c module
CVE-2023-29001

7.5HIGH

Key Information:

Vendor: Contiki-ng
Status: Contiki-ng
Vendor: CVE Published:; 27 November 2024

What is CVE-2023-29001?

A flaw in the Contiki-NG open-source operating system, which is widely used across IoT devices, involves the processing of source routing headers in its RPL protocol implementations. The vulnerability allows for improper validation of next-hop addresses during packet forwarding, resulting in a risk of uncontrolled recursion within the tcpip_ipv6_output function. This can be exploited by attackers capable of sending IPv6 packets to the affected systems, leading to potential stack overflow situations through deeply nested recursive calls. The issue remains unpatched in the current version of Contiki-NG, but future releases are expected to address it. Users are encouraged to apply the patch available in pull request #2264 or wait for the upcoming release, as no workaround exists for this issue.

Affected Version(s)

contiki-ng <= 4.9

References

https://github.com/contiki-ng/contiki-ng/security/advisor...

x_refsource_CONFIRM

https://github.com/contiki-ng/contiki-ng/pull/2264

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 27, 2024
Vulnerability Reserved
Mar 29, 2023

Contiki-ng

What is CVE-2023-29001?

Affected Version(s)

References

CVSS V3.1

Timeline