CVE-2020-17441

Name of the Vulnerable Software and Affected Versions picoTCP version 1.7.0

Description An issue was discovered in the code for processing IPv6 headers, where the IPv6 payload length field is not validated against the actual size of the payload. This leads to an Out-of-Bounds read during the ICMPv6 checksum calculation, resulting in either Denial-of-Service or Information Disclosure. The issue affects pico ipv6 extension headers and pico checksum adder in pico ipv6.c and pico frame.c.

Recommendations For picoTCP version 1.7.0, consider disabling the pico checksum adder function or restricting the use of pico ipv6 extension headers until a patch is available. Additionally, as a temporary workaround, restrict access to the affected modules pico ipv6.c and pico frame.c to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.