{"id":"CVE-2024-52802","summary":"RIOT-OS missing dhcpv6_opt_t minimum header length check","details":"RIOT is an operating system for internet of things (IoT) devices. In version 2024.04 and prior, the function `_parse_advertise`, located in `/sys/net/application_layer/dhcpv6/client.c`, has no minimum header length check for `dhcpv6_opt_t` after processing `dhcpv6_msg_t`. This omission could lead to an out-of-bound read, causing system inconsistency. Additionally, the same lack of a header length check is present in the function `_preparse_advertise`, which is called by `_parse_advertise` before handling the request. As of time of publication, no known patched version exists.","aliases":["GHSA-xgv3-pcq6-qmrg"],"modified":"2026-04-10T05:13:01.891710Z","published":"2024-11-22T15:41:29.609Z","database_specific":{"cna_assigner":"GitHub_M","cwe_ids":["CWE-125","CWE-20"],"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/52xxx/CVE-2024-52802.json"},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/52xxx/CVE-2024-52802.json"},{"type":"ADVISORY","url":"https://github.com/RIOT-OS/RIOT/security/advisories/GHSA-xgv3-pcq6-qmrg"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-52802"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/riot-os/riot","events":[{"introduced":"0"},{"last_affected":"7bec6cb0b125af6ca99f0d850f6069436b1cedc8"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"2024.04"}]}}],"versions":["2013.08","2014.01","2014.05","2014.12","2015.09-RC1","2015.12-RC1","2015.12-devel","2016.03-devel","2016.04-RC1","2016.07-RC1","2016.07-RC2","2016.07-devel","2016.10-RC1","2016.10-devel","2017.01-RC1","2017.01-devel","2017.04-RC1","2017.04-devel","2017.07-RC1","2017.07-devel","2017.10-RC1","2017.10-devel","2018.01-RC1","2018.01-devel","2018.04-RC1","2018.04-devel","2018.07-RC1","2018.07-devel","2018.10-RC1","2018.10-devel","2019.01-RC1","2019.01-devel","2019.04-RC1","2019.04-devel","2019.07-RC1","2019.07-devel","2019.10-RC1","2019.10-devel","2020.01-RC1","2020.01-devel","2020.04-RC1","2020.04-devel","2020.07-RC1","2020.07-devel","2020.10-RC1","2020.10-devel","2021.01-RC1","2021.01-devel","2021.04-RC1","2021.04-devel","2021.07-RC1","2021.07-devel","2021.10-RC1","2021.10-devel","2022.01-RC1","2022.01-devel","2022.04-RC1","2022.04-devel","2022.07-RC1","2022.07-devel","2022.10-RC1","2022.10-devel","2023.01-RC1","2023.01-devel","2023.04-RC1","2023.04-devel","2023.07-RC1","2023.07-devel","2023.10-RC1","2023.10-devel","2024.01-RC1","2024.01-devel","2024.04-devel"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-52802.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}