Memory access out of buffer boundaries may occur if an SNMP ASN.1 BER encoder/decoder routines.
The length of provided input/output buffers is insufficiently verified when encoding and decoding data. Lack of boundary checks may lead to out-of-bounds buffer read or write access.
Example functions that make access to memory without prior verification of sufficient input data length:
Description of defect
References:
https://github.com/contiki-ng/contiki-ng/tree/release/v4.5
https://github.com/contiki-ng/contiki-ng/tree/release/v4.4
File:
snmp-engine.c
Analysis:
Memory access out of buffer boundaries may occur if an SNMP ASN.1 BER encoder/decoder routines.
The length of provided input/output buffers is insufficiently verified when encoding and decoding data. Lack of boundary checks may lead to out-of-bounds buffer read or write access.
Example functions that make access to memory without prior verification of sufficient input data length:
contiki-ng/os/net/app-layer/snmp/snmp-ber.c
Line 129 in 31753fe
contiki-ng/os/net/app-layer/snmp/snmp-ber.c
Line 138 in 31753fe
contiki-ng/os/net/app-layer/snmp/snmp-ber.c
Line 147 in 31753fe
contiki-ng/os/net/app-layer/snmp/snmp-ber.c
Line 183 in 31753fe
contiki-ng/os/net/app-layer/snmp/snmp-ber.c
Line 264 in 31753fe
Type:
Result:
Target(s) affected by this defect ?
The text was updated successfully, but these errors were encountered: