Contiki-NG is an open-source, cross-platform operating system for IoT devices. The Contiki-NG operating system processes source routing headers (SRH) in its two alternative RPL protocol implementations. The IPv6 implementation uses the results of this processing to determine whether an incoming packet should be forwarded to another host. Because of missing validation of the resulting next-hop address, an uncontrolled recursion may occur in the tcpip_ipv6_output function in the os/net/ipv6/tcpip.c module when receiving a packet with a next-hop address that is a local address. Attackers that have the possibility to send IPv6 packets to the Contiki-NG host can therefore trigger deeply nested recursive calls, which can cause a stack overflow. The vulnerability has not been patched in the current release of Contiki-NG, but is expected to be patched in the next release. The problem can be fixed by applying the patch in Contiki-NG pull request #2264. Users are advised to either apply the patch manually or to wait for the next release. There are no known workarounds for this vulnerability.
Metrics
Affected Vendors & Products
References
History
Wed, 27 Nov 2024 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Contiki-ng
Contiki-ng contiki-ng |
|
CPEs | cpe:2.3:o:contiki-ng:contiki-ng:-:*:*:*:*:*:*:* | |
Vendors & Products |
Contiki-ng
Contiki-ng contiki-ng |
|
Metrics |
ssvc
|
Wed, 27 Nov 2024 18:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Contiki-NG is an open-source, cross-platform operating system for IoT devices. The Contiki-NG operating system processes source routing headers (SRH) in its two alternative RPL protocol implementations. The IPv6 implementation uses the results of this processing to determine whether an incoming packet should be forwarded to another host. Because of missing validation of the resulting next-hop address, an uncontrolled recursion may occur in the tcpip_ipv6_output function in the os/net/ipv6/tcpip.c module when receiving a packet with a next-hop address that is a local address. Attackers that have the possibility to send IPv6 packets to the Contiki-NG host can therefore trigger deeply nested recursive calls, which can cause a stack overflow. The vulnerability has not been patched in the current release of Contiki-NG, but is expected to be patched in the next release. The problem can be fixed by applying the patch in Contiki-NG pull request #2264. Users are advised to either apply the patch manually or to wait for the next release. There are no known workarounds for this vulnerability. | |
Title | Uncontrolled recursion due to insufficient validation of the IPv6 source routing header in Contiki-NG | |
Weaknesses | CWE-674 | |
References |
| |
Metrics |
cvssV4_0
|
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2024-11-27T18:20:47.360Z
Updated: 2024-11-27T19:22:42.237Z
Reserved: 2023-03-29T17:39:16.142Z
Link: CVE-2023-29001
Vulnrichment
Updated: 2024-11-27T19:21:54.421Z
NVD
Status : Received
Published: 2024-11-27T19:15:31.497
Modified: 2024-11-27T19:15:31.497
Link: CVE-2023-29001
Redhat
No data.