OpenThread wpantund through 2021-07-02 has a stack-based Buffer Overflow because of an inconsistency in the integer data type for metric_len.
References
Link | Resource |
---|---|
https://github.com/openthread/wpantund/releases | Third Party Advisory |
https://github.com/fireeye/Vulnerability-Disclosures/blob/master/FEYE-2021-0019/FEYE-2021-0019.md | Patch Third Party Advisory |
https://github.com/openthread/wpantund/issues/502 | Patch Third Party Advisory |
Configurations
Information
Published : 2021-07-02 12:15
Updated : 2021-07-12 08:50
NVD link : CVE-2021-33889
Mitre link : CVE-2021-33889
JSON object : View
CWE
CWE-787
Out-of-bounds Write
Products Affected
openthread
- wpantund