openthread/wpantund

openthread/wpantund

Releases10

Frequency1 month 2 days

Last Release about 9 years ago

Stars179

Wireless Network Interface Daemon for Low-Power Wireless SoCs

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-33889 ↗	Jul 2, 2021Friday, 2 July 2021, 19:15	6.8 MEDIUM	4.6 MEDIUM
OpenThread wpantund through 2021-07-02 has a stack-based Buffer Overflow because of an inconsistency in the integer data type for metric_len.
CVE-2020-8916 ↗	Jul 7, 2020Tuesday, 7 July 2020, 21:15	5 MEDIUM	2.1 LOW
A memory leak in Openthread's wpantund versions up to commit 0e5d1601febb869f583e944785e5685c6c747be7, when used in an environment where wpanctl is directly interfacing with the control driver (eg: debug environments) can allow an attacker to crash the service (DoS). We recommend updating, or to restrict access in your debug environments.