CVE-2024-52802

Name of the Vulnerable Software and Affected Versions RIOT versions 2024.04 and prior

Description The issue is related to the parse advertise function, located in /sys/net/application layer/dhcpv6/client.c, which lacks a minimum header length check for dhcpv6 opt t after processing dhcpv6 msg t. This could lead to an out-of-bound read, causing system inconsistency. The same issue is present in the preparse advertise function, which is called by parse advertise before handling the request.

Recommendations For versions 2024.04 and prior, as a temporary workaround, consider disabling the parse advertise function until a patch is available. Restrict access to the /sys/net/application layer/dhcpv6/client.c module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.