CNNVD-202507-2440 Information

CNNVD ID

CNNVD-202507-2440

Related CVE

CVE-2025-53888

• CNNVD Published: 2025-07-18

Description (Chinese)

RIOT是RIOT开源的一套应用于物联网领域的操作系统。 RIOT 2025.04及之前版本存在安全漏洞，该漏洞源于无效的大小检查，可能导致缓冲区溢出。

Description (English)

RIOT is an operating system for RIOT open source applications. The RIOT 2025.04 and previous versions had a security loophole, which stemmed from ineffective size checks and could lead to a spill out of the buffer zone.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

RIOT

Published

2025-07-18

Last Modified

2026-02-24

References

https://github.com/RIOT-OS/RIOT/blob/2025.04/sys/net/link_layer/l2filter/l2filter.c#L47 https://github.com/RIOT-OS/RIOT/commit/f6f7de4ccc107c018630e4c15500825caf02e1c2 https://github.com/RIOT-OS/RIOT/security/advisories/GHSA-7972-w7f9-3j9m https://access.redhat.com/security/cve/cve-2025-53888