Buffer overflow in Riot-os Riot
CVE-2025-66647
RIOT is an open-source microcontroller operating system, designed to match the requirements of Internet of Things (IoT) devices and other embedded devices. A vulnerability was discovered in the IPv6 fragmentation reassembly implementation…
Vulnerability class: Buffer Overflow
EPSS: 0.007 (71.7th percentile) — read the EPSS interpretation.
Affected products
- Riot-os Riot — versions < 2025.10
Weakness classification (CWE)
References
- https://github.com/RIOT-OS/RIOT/security/advisories/GHSA-wh3v-q6vr-j79r (x_refsource_CONFIRM)
- https://github.com/RIOT-OS/RIOT/blob/eb65305cf9f1b7affb50b17af5c12341b83a8636/sys/net/gnrc/network_layer/ipv6/ext/frag/gnrc_ipv6_ext_frag.c#L411 (x_refsource_MISC)
- https://github.com/RIOT-OS/RIOT/blob/eb65305cf9f1b7affb50b17af5c12341b83a8636/sys/net/gnrc/network_layer/ipv6/ext/frag/gnrc_ipv6_ext_frag.c#L481 (x_refsource_MISC)
- https://github.com/RIOT-OS/RIOT/blob/eb65305cf9f1b7affb50b17af5c12341b83a8636/sys/net/gnrc/network_layer/ipv6/ext/frag/gnrc_ipv6_ext_frag.c#L532 (x_refsource_MISC)
- https://github.com/RIOT-OS/RIOT/blob/eb65305cf9f1b7affb50b17af5c12341b83a8636/sys/net/gnrc/network_layer/ipv6/ext/frag/gnrc_ipv6_ext_frag.c#L544 (x_refsource_MISC)
- https://github.com/RIOT-OS/RIOT/releases/tag/2025.10 (x_refsource_MISC)