Unrated severityNVD Advisory· Published Dec 9, 2020· Updated Feb 13, 2025
Apache NuttX (incubating) Out of Bound Write from invalid fragmentation offset value specified in the IP header
CVE-2020-17529
Description
Out-of-bounds Write vulnerability in TCP Stack of Apache NuttX (incubating) versions up to and including 9.1.0 and 10.0.0 allows attacker to corrupt memory by supplying and invalid fragmentation offset value specified in the IP header. This is only impacts builds with both CONFIG_EXPERIMENTAL and CONFIG_NET_TCP_REASSEMBLY build flags enabled.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Apache Software Foundation/Apache NuttX (incubating)v5Range: unspecified
Patches
Vulnerability mechanics
References
2- www.openwall.com/lists/oss-security/2020/12/09/5mitremailing-listx_refsource_MLIST
- lists.apache.org/thread.html/r4d71ae3ab96b589835b94ba7ac4cb88a704e7307bceefeab749366f3%40%3Cdev.nuttx.apache.org%3Emitrex_refsource_MISCmailing-listx_refsource_MLIST
News mentions
0No linked articles in our index yet.