Vulnerability Description
An issue was discovered in lib_mem.c in Micrium uC/OS uC/LIB 1.38.x and 1.39.00. The following memory allocation functions do not check for integer overflow when allocating a pool whose size exceeds the address space: Mem_PoolCreate, Mem_DynPoolCreate, and Mem_DynPoolCreateHW. Because these functions use multiplication to calculate the pool sizes, the operation may cause an integer overflow if the arguments are large enough. The resulting memory pool will be smaller than expected and may be exploited by an attacker.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Micrium | Uc\/Lib | 1.38.00 |
Related Weaknesses (CWE)
References
- https://docs.silabs.com/micrium/latest/micrium-common/Vendor Advisory
- https://micrium.atlassian.net/wiki/spaces/libdoc138/Third Party Advisory
- https://www.cisa.gov/uscert/ics/advisories/icsa-21-119-04Third Party AdvisoryUS Government Resource
- https://docs.silabs.com/micrium/latest/micrium-common/Vendor Advisory
- https://micrium.atlassian.net/wiki/spaces/libdoc138/Third Party Advisory
- https://www.cisa.gov/uscert/ics/advisories/icsa-21-119-04Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2021-26706?
CVE-2021-26706 is a vulnerability with a CVSS score of 9.8 (CRITICAL). An issue was discovered in lib_mem.c in Micrium uC/OS uC/LIB 1.38.x and 1.39.00. The following memory allocation functions do not check for integer overflow when allocating a pool whose size exceeds t...
How severe is CVE-2021-26706?
CVE-2021-26706 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2021-26706?
Check the references section above for vendor advisories and patch information. Affected products include: Micrium Uc\/Lib.