CVE-2021-22636

Name of the Vulnerable Software and Affected Versions TI-RTOS versions (affected versions not specified)

Description The issue is caused by an integer overflow in the ti sysbios rts MemAlloc alloc() function, which can allow an attacker to execute arbitrary code or cause a denial of service. When configured to use the HeapMem heap, malloc returns a valid pointer to a small buffer on extremely large values, triggering the integer overflow vulnerability in HeapMem allocUnprotected. This can result in code execution.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.