tass-belgium/picotcp

Releases27

Frequency1 month 4 weeks

Last Release over 9 years ago

Stars1.3K

PicoTCP is a free TCP/IP stack implementation

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-30463 ↗	Apr 19, 2023Wednesday, 19 April 2023, 12:15	7.5 HIGH	—
Altran picoTCP through 1.7.0 allows memory corruption (and subsequent denial of service) because of an integer overflow in pico_ipv6_alloc when processing large ICMPv6 packets. This affects installations with Ethernet support in which a packet size greater than 65495 may occur.
CVE-2017-1000210 ↗	Nov 17, 2017Friday, 17 November 2017, 01:29	—	7.5 HIGH
picoTCP (versions 1.7.0 - 1.5.0) is vulnerable to stack buffer overflow resulting in code execution or denial of service attack