CVE-2019-17211

Name of the Vulnerable Software and Affected Versions Arm Mbed OS version 5.14.0

Description An integer overflow was discovered in the CoAP library. The issue arises from the function sn coap builder calc needed packet data size 2(), which calculates the required memory for the CoAP message. The variables returned byte count and src coap msg ptr->payload len are of type uint16 t. When these values are added together, the result returned byte count can exceed the maximum uint16 t value, causing a wrap-around. This leads to insufficient buffer space being allocated for the corresponding CoAP message.

Recommendations For Arm Mbed OS version 5.14.0, consider modifying the sn coap builder calc needed packet data size 2() function to handle the integer overflow, ensuring sufficient buffer space is allocated for CoAP messages.