CVE-2020-17442

Name of the Vulnerable Software and Affected Versions picoTCP version 1.7.0

Description The issue is related to the parsing of hop-by-hop IPv6 extension headers in picoTCP, where the code does not validate the bounds of the extension header length value. This may result in Integer Wraparound, and a crafted extension header length value can cause Denial-of-Service. The problem affects the loop in which the extension headers are parsed in the pico ipv6 process hopbyhop() function in pico ipv6.c.

Recommendations For picoTCP version 1.7.0, consider disabling the pico ipv6 process hopbyhop() function until a patch is available to prevent Denial-of-Service attacks. Restrict access to the pico ipv6.c module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.