CVE-2020-17468

Name of the Vulnerable Software and Affected Versions FNET versions through 4.6.4

Description An issue was discovered in the code for processing the hop-by-hop header in the IPv6 extension headers. The code does not check for a valid length of an extension header, which can lead to an out-of-bounds read in fnet ip6 ext header handler options in fnet ip6.c, resulting in a Denial-of-Service.

Recommendations For FNET versions through 4.6.4, consider disabling the fnet ip6 ext header handler options function in fnet ip6.c as a temporary workaround to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.