CVE-2022-41873

Name of the Vulnerable Software and Affected Versions Contiki-NG versions prior to 4.9

Description The issue concerns an out-of-bounds read in Contiki-NG, an open-source operating system for IoT devices. It occurs while processing the L2CAP protocol in the Bluetooth Low Energy stack, where an integer truncation issue leads to an incomplete bounds check on incoming channel IDs. This allows a crafted channel ID to read and write out-of-bounds memory with attacker-controlled data. The vulnerability is related to the get channel for cid function in os/net/mac/ble/ble-l2cap.c.

Recommendations For versions prior to 4.9, apply the patch in Contiki-NG pull request 2081 on GitHub as a workaround until the official release 4.9 is available.