Vulnerability Description
Out-of-bounds Write vulnerability in TCP Stack of Apache NuttX (incubating) versions up to and including 9.1.0 and 10.0.0 allows attacker to corrupt memory by supplying and invalid fragmentation offset value specified in the IP header. This is only impacts builds with both CONFIG_EXPERIMENTAL and CONFIG_NET_TCP_REASSEMBLY build flags enabled.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apache | Nuttx | <= 9.1.0 |
Related Weaknesses (CWE)
References
- http://www.openwall.com/lists/oss-security/2020/12/09/5Mailing ListThird Party Advisory
- https://lists.apache.org/thread.html/r4d71ae3ab96b589835b94ba7ac4cb88a704e7307bcMailing ListVendor Advisory
- https://lists.apache.org/thread.html/r4d71ae3ab96b589835b94ba7ac4cb88a704e7307bcMailing ListVendor Advisory
- http://www.openwall.com/lists/oss-security/2020/12/09/5Mailing ListThird Party Advisory
- https://lists.apache.org/thread.html/r4d71ae3ab96b589835b94ba7ac4cb88a704e7307bcMailing ListVendor Advisory
- https://lists.apache.org/thread.html/r4d71ae3ab96b589835b94ba7ac4cb88a704e7307bcMailing ListVendor Advisory
FAQ
What is CVE-2020-17529?
CVE-2020-17529 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Out-of-bounds Write vulnerability in TCP Stack of Apache NuttX (incubating) versions up to and including 9.1.0 and 10.0.0 allows attacker to corrupt memory by supplying and invalid fragmentation offse...
How severe is CVE-2020-17529?
CVE-2020-17529 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2020-17529?
Check the references section above for vendor advisories and patch information. Affected products include: Apache Nuttx.