====================================================================

                             CERT-Renater

                 Note d'Information No. 2020/VULN676
_____________________________________________________________________

DATE                : 10/12/2020

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Apache NuttX versions
                              prior to 9.1.1, 10.0.0.

=====================================================================
http://mail-archives.apache.org/mod_mbox/nuttx-dev/202012.mbox/%3cb148bafd9f039e364d2a84c589ae1f0caeafd78a.camel@apache.org%3e
http://mail-archives.apache.org/mod_mbox/nuttx-dev/202012.mbox/%3cfcd7c15ae863af5abca61ce51ae194687a9a84ba.camel@apache.org%3e
_____________________________________________________________________

Description:
Out-of-bounds Write vulnerability in TCP stack of Apache Software
Foundation Apache NuttX (incubating) allows attacker to corrupt memory
by supplying arbitrary urgent data pointer offsets within TCP packets
including beyond the length of the packet.

This issue affects:
Apache Software Foundation Apache NuttX (incubating) versions prior to
9.1.1 AND 10.0.0.

This issue is also known as AMNESIA:33 CVE-2020-17437

Credit:
Apache NuttX would like to thank Forescout for reporting the issue

Thanks you,
Brennan Ashton

_____________________________________________________________________

Description:
Out-of-bounds Write vulnerability in TCP Stack of Apache Software
Foundation Apache NuttX (incubating) allows attacker to corrupt memory
by supplying and invalid fragmentation offset value specified in the IP
header.  This is only impacts builds with both CONFIG_EXPERIMENTAL and
CONFIG_NET_TCP_REASSEMBLY build flags enabled.

This issue affects:
Apache Software Foundation Apache NuttX (incubating) versions prior to
9.1.1 AND 10.0.0.

This issue is also known as AMNESIA:33 CVE-2020-17438

Credit:
Apache NuttX would like to thank Forescout for reporting the issue

Thanks you,
Brennan Ashton


=========================================================
+ CERT-RENATER       |    tel : 01-53-94-20-44          +
+ 23/25 Rue Daviel   |    fax : 01-53-94-20-41          +
+ 75013 Paris        |    email:cert@support.renater.fr +
=========================================================