CVE-2021-27502: Texas Instruments TI-RTOS Integer Overflow or Wraparound
First published: Tue Nov 21 2023(Updated: )
Texas Instruments TI-RTOS, when configured to use HeapMem heap(default), malloc returns a valid pointer to a small buffer on extremely large values, which can trigger an integer overflow vulnerability in 'HeapMem_allocUnprotected' and result in code execution.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Ti Real-time Operating System | ||
| Any of | ||
| TI CC3200 Firmware | ||
| TI CC3220R | ||
| TI CC3220R | ||
| Texas Instruments CC3220SF | ||
| TI CC3230S | ||
| TI CC3230S | ||
| TI CC3235SF | ||
| TI CC3235SF | ||
| Ti SimpleLink CC13x0 Software Development Kit | <4.40.00 | |
| Ti SimpleLink CC26xx Software Development Kit | <4.40.00 | |
| Ti Simplelink CC32XX Software Development Kit | <4.10.03 | |
| Texas Instruments SimpleLink MSP432E401Y | ||
| Texas Instruments SimpleLink MSP432E4 SDK | ||
| Amazon FreeRTOS | ||
| Apache NuttX | ||
| ARM CMSIS-RTOS2 | ||
| Arm Mbed OS | ||
| Arm Mbed ualloc | ||
| QNX | ||
| BlackBerry QNX OS for Safety | ||
| BlackBerry QNX OS for Medical | ||
| QNX | ||
| Mongoose OS | ||
| eCosCentric eCosPro RTOS | ||
| Google Cloud IoT Device SDK | ||
| MediaTek LinkIt SDK | ||
| Micrium OS | ||
| Micrium uC/OS | ||
| NXP MCUXpresso SDK | ||
| NXP MQX | ||
| newlib | ||
| RIOT OS | ||
| Samsung Tizen RT | ||
| TencentOS-tiny | ||
| Texas Instruments SimpleLink CC32XX | ||
| Texas Instruments SimpleLink MSP432E4 SDK | ||
| Texas Instruments SimpleLink CC13X2 SDK | ||
| Texas Instruments SimpleLink CC26XX | ||
| Texas Instruments SimpleLink CC32XX | ||
| uClibc | ||
| Wind River VxWorks | ||
| Zephyr Project RTOS |
Remedy
Texas Instruments CC32XX – Update to v4.40.00.07 Texas Instruments SimpleLink CC13X0 – Update to v4.10.03 https://www.ti.com/technologies/security/report-product-security-vulnerabilities.html Texas Instruments SimpleLink CC13X2-CC26X2 – Update to v4.40.00 https://www.ti.com/technologies/security/report-product-security-vulnerabilities.html Texas Instruments SimpleLink CC2640R2 – Update to v4.40.00 https://www.ti.com/technologies/security/report-product-security-vulnerabilities.html Texas Instruments SimpleLink MSP432E4 – Confirmed. No update currently planned
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-27502?
CVE-2021-27502 is a vulnerability in Texas Instruments TI-RTOS that can be exploited through an integer overflow or wraparound.
How does Texas Instruments TI-RTOS Integer Overflow or Wraparound vulnerability affect the software?
The vulnerability affects Texas Instruments TI-RTOS when configured to use the HeapMem heap, causing an integer overflow in 'HeapMem_allocUnprotected' function and potentially allowing for code execution.
What is the severity of CVE-2021-27502?
The severity of CVE-2021-27502 is high with a CVSS score of 7.4.
Which software versions are affected by Texas Instruments TI-RTOS Integer Overflow or Wraparound vulnerability?
The affected software versions include Ti Real-time Operating System, Ti Simplelink Cc13xx Software Development Kit (up to version 4.40.00), Ti Simplelink Cc26xx Software Development Kit (up to version 4.40.00), Ti Simplelink Cc32xx Software Development Kit (up to version 4.10.03), Ti Simplelink Msp432e401y, and Ti Simplelink Msp432e411y.
How do I mitigate the Texas Instruments TI-RTOS Integer Overflow or Wraparound vulnerability?
To mitigate the vulnerability, it is recommended to apply the necessary updates or patches provided by Texas Instruments and follow their security advisories.
- agent/type
- agent/first-publish-date
- agent/author
- agent/remedy
- agent/severity
- agent/weakness
- agent/title
- agent/description
- agent/event
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- agent/software-canonical-lookup-request
- collector/ics-cert-advisory
- source/ICS
- agent/software-canonical-lookup
- vendor/ti
- canonical/ti real-time operating system
- canonical/ti cc3200 firmware
- canonical/ti cc3220r
- canonical/texas instruments cc3220sf
- canonical/ti cc3230s
- canonical/ti cc3235sf
- canonical/ti simplelink cc13x0 software development kit
- canonical/ti simplelink cc26xx software development kit
- canonical/ti simplelink cc32xx software development kit
- canonical/texas instruments simplelink msp432e401y
- canonical/texas instruments simplelink msp432e4 sdk
- vendor/multiple
- canonical/amazon freertos
- canonical/apache nuttx
- canonical/arm cmsis-rtos2
- canonical/arm mbed os
- canonical/arm mbed ualloc
- canonical/qnx
- canonical/blackberry qnx os for safety
- canonical/blackberry qnx os for medical
- canonical/mongoose os
- canonical/ecoscentric ecospro rtos
- canonical/google cloud iot device sdk
- canonical/mediatek linkit sdk
- canonical/micrium os
- canonical/micrium uc/os
- canonical/nxp mcuxpresso sdk
- canonical/nxp mqx
- canonical/newlib
- canonical/riot os
- canonical/samsung tizen rt
- canonical/tencentos-tiny
- canonical/texas instruments simplelink cc32xx
- canonical/texas instruments simplelink cc13x2 sdk
- canonical/texas instruments simplelink cc26xx
- canonical/uclibc
- canonical/wind river vxworks
- canonical/zephyr project rtos