CVE-2021-26461

Name of the Vulnerable Software and Affected Versions Apache Nuttx versions prior to 10.1.0

Description The issue is related to an integer wrap-around in the malloc, realloc, and memalign functions, leading to improper memory assignment. This can result in arbitrary memory allocation, causing unexpected behavior such as a crash or remote code injection/execution. The vulnerability can be exploited by a remote attacker to cause a denial of service or execute arbitrary code.

Recommendations For Apache Nuttx versions prior to 10.1.0, update to version 10.1.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the affected functions malloc, realloc, and memalign to minimize the risk of exploitation.