First published: Fri Sep 07 2018(Updated: )
An issue was discovered in Contiki-NG through 4.1. There is a buffer overflow in lvm_set_type in os/storage/antelope/lvm.c while parsing AQL (lvm_set_op, lvm_set_relation, lvm_set_operand).
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Contiki-ng Contiki-ng. | <=4.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is CVE-2018-16664.
The severity of CVE-2018-16664 is high.
Versions up to and including 4.1 of the Contiki-NG software are affected by CVE-2018-16664.
The CWE for CVE-2018-16664 is 119.
Yes, it is recommended to install the latest version of Contiki-NG to fix CVE-2018-16664.