Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision | Next revisionBoth sides next revision | ||
| advisory:2020-05-06-2 [2020/05/06 11:04] – delete duplicate bobafetthotmail | advisory:2020-05-06-2 [2020/05/06 15:24] – created ldir | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| + | ====== Security Advisory 2020-05-06-2 - relayd out-of-bounds reads of heap data and possible buffer overflow (CVE-2020-11752) ====== | ||
| + | |||
| + | ==== DESCRIPTION ==== | ||
| + | |||
| + | relayd in OpenWrt through 19.07.2 has potential for out-of-bounds reads of heap data and possible buffer overflow. | ||
| + | |||
| + | |||
| + | [[https:// | ||
| + | ==== REQUIREMENTS ==== | ||
| + | |||
| + | In order to exploit this vulnerability, | ||
| + | provide specially crafted relayd packet. | ||
| + | ==== MITIGATIONS ==== | ||
| + | |||
| + | To fix this issue, update the affected relayd package using the command below. | ||
| + | |||
| + | opkg update; opkg upgrade relayd | ||
| + | |||
| + | The fix is contained in the following and later versions: | ||
| + | |||
| + | TBA: Placeholder only | ||
| + | |||
| + | * OpenWrt master: 2020-05-?? [[https:// | ||
| + | * OpenWrt 19.07: | ||
| + | * OpenWrt 18.06: | ||
| + | |||
| + | ==== AFFECTED VERSIONS ==== | ||
| + | |||
| + | To our knowledge, OpenWrt versions 18.06.0 to 18.06.7 and versions 19.07.0 to | ||
| + | 19.07.2 are affected. | ||
| + | OpenWrt 18.06.9 and OpenWrt 19.07.3 releases. | ||
| + | OpenWrt 15.05 and LEDE 17.01) are end of life and not supported any more. | ||
| + | |||
| + | ==== CREDITS ==== | ||
| + | |||
| + | This issue was identified by Guido Vranken using ForAllSecure Mayhem and code fix | ||
| + | was implemented by Kevin Darbyshire-Bryant with assistance from Guido Vranken. | ||