| |
Podatność CVE-2024-2212
Publikacja: 2024-03-26
| Opis: |
In Eclipse ThreadX before 6.4.0, xQueueCreate() and xQueueCreateSet()
functions from the FreeRTOS compatibility API
(utility/rtos_compatibility_layers/FreeRTOS/tx_freertos.c) were missing
parameter checks. This could lead to integer wraparound,
under-allocations and heap buffer overflows.
|
W naszej bazie, znaleźliśmy następujące noty dla tego CVE: | Tytuł | Autor | Data |
High |
| Marco Ivaldi | 29.05.2024 |
Typ:
CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer)
Referencje: |
https://github.com/eclipse-threadx/threadx/security/advisories/GHSA-v9jj-7qjg-h6g6
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
Polish
English