CVE-2026-29013

Name of the Vulnerable Software and Affected Versions libcoap (affected versions not specified)

Description An issue exists in the OSCORE Appendix B.2 CBOR unwrap handling where the function get byte inc() in src/oscore/oscore cbor.c relies exclusively on assert() for bounds checking. Since assert() is removed in release builds compiled with NDEBUG, attackers can send crafted CoAP requests with malformed OSCORE options or responses during OSCORE negotiation. This can trigger out-of-bounds reads during CBOR parsing and potentially lead to heap buffer overflow writes due to integer wraparound in the allocation size computation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.