Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in FNET through 4.6.4. The code for IPv6 fragment reassembly tries to access a previous fragment starting from a network incoming fragment that still doesn't have a reference to the previous one (which supposedly resides in the reassembly list). When faced with an incoming fragment that belongs to a non-empty fragment list, IPv6 reassembly must check that there are no empty holes between the fragments: this leads to an uninitialized pointer dereference in _fnet_ip6_reassembly in fnet_ip6.c, and causes Denial-of-Service.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
FNET 缓冲区错误漏洞
Vulnerability Description
FNET是FNET组织的一款为32位MCU提供双TCP / IPv4和IPv6堆栈支持的软甲。 FNET的IPv6包重组功能存在缓冲区错误漏洞,该漏洞源于FNET不检查是否收到碎片在内存中正确对齐,允许攻击者执行与精心制作的IPv6碎片包内存腐败。
CVSS Information
N/A
Vulnerability Type
N/A