Altran Picotcp

13 CVEs affecting Altran Picotcp. Latest disclosed: 2023-04-19. Critical: 5, High: 8.

Top CVEs affecting Altran Picotcp
CVESeverityScorePublishedSummary
CVE-2021-33304Critical9.82023-02-15Double Free vulnerability in virtualsquare picoTCP v1.7.0 and picoTCP-NG v2.1 in modules/pico_fragments.c in function pico_fragments_reassemble, allows attacke…
CVE-2020-24338Critical9.82020-12-11An issue was discovered in picoTCP through 1.7.0. The DNS domain name record decompression functionality in pico_dns_decompress_name() in pico_dns_common.c doe…
CVE-2017-1000210Critical9.82017-11-17picoTCP (versions 1.7.0 - 1.5.0) is vulnerable to stack buffer overflow resulting in code execution or denial of service attack
CVE-2020-24341Critical9.12020-12-11An issue was discovered in picoTCP and picoTCP-NG through 1.7.0. The TCP input data processing function in pico_tcp.c does not validate the length of incoming…
CVE-2020-17441Critical9.12020-12-11An issue was discovered in picoTCP 1.7.0. The code for processing the IPv6 headers does not validate whether the IPv6 payload length field is equal to the actu…
CVE-2023-30463High7.52023-04-19Altran picoTCP through 1.7.0 allows memory corruption (and subsequent denial of service) because of an integer overflow in pico_ipv6_alloc when processing larg…
CVE-2020-24340High7.52020-12-11An issue was discovered in picoTCP and picoTCP-NG through 1.7.0. The code that processes DNS responses in pico_mdns_handle_data_as_answers_generic() in pico_md…
CVE-2020-24339High7.52020-12-11An issue was discovered in picoTCP and picoTCP-NG through 1.7.0. The DNS domain name record decompression functionality in pico_dns_decompress_name() in pico_d…
CVE-2020-24337High7.52020-12-11An issue was discovered in picoTCP and picoTCP-NG through 1.7.0. When an unsupported TCP option with zero length is provided in an incoming TCP packet, it is p…
CVE-2020-17445High7.52020-12-11An issue was discovered in picoTCP 1.7.0. The code for processing the IPv6 destination options does not check for a valid length of the destination options hea…
CVE-2020-17444High7.52020-12-11An issue was discovered in picoTCP 1.7.0. The routine for processing the next header field (and deducing whether the IPv6 extension headers are valid) doesn't…
CVE-2020-17443High7.52020-12-11An issue was discovered in picoTCP 1.7.0. The code for creating an ICMPv6 echo replies doesn't check whether the ICMPv6 echo request packet's size is shorter t…
CVE-2020-17442High7.52020-12-11An issue was discovered in picoTCP 1.7.0. The code for parsing the hop-by-hop IPv6 extension headers does not validate the bounds of the extension header lengt…