Binophism

Name of the Vulnerable Software and Affected Versions: libcsp version 2.0 Description: libcsp version 2.0 contains a buffer overflow in the `csp eth init()` function. This issue is due to the use of `strcpy` to copy the `ifname` parameter into a structure member (`ctx->name`) without proper input length validation. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: libcsp version 2.0 Description: libcsp version 2.0 contains a buffer overflow in the `csp usart open()` function located at drivers/usart/zephyr.c. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.