漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Integer wraparounds, under-allocations, and heap buffer overflows in Eclipse ThreadX xQueueCreate() and xQueueCreateSet()
Vulnerability Description
In Eclipse ThreadX before 6.4.0, xQueueCreate() and xQueueCreateSet() functions from the FreeRTOS compatibility API (utility/rtos_compatibility_layers/FreeRTOS/tx_freertos.c) were missing parameter checks. This could lead to integer wraparound, under-allocations and heap buffer overflows.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L
Vulnerability Type
堆缓冲区溢出
Vulnerability Title
Eclipse ThreadX RTOS 安全漏洞
Vulnerability Description
Eclipse ThreadX RTOS是Eclipse ThreadX公司的专为深度嵌入式应用程序设计的高级实时操作系统 (RTOS)。 Eclipse ThreadX RTOS 6.4.0之前版本存在安全漏洞,该漏洞源于函数xQueueCreate()和xQueueCreateSet()缺少参数检查,导致存在缓冲区溢出漏洞。
CVSS Information
N/A
Vulnerability Type
N/A