CVE-2023-30463 Information

Description

Altran picoTCP through 1.7.0 allows memory corruption (and subsequent denial of service) because of an integer overflow in pico_ipv6_alloc when processing large ICMPv6 packets. This affects installations with Ethernet support in which a packet size greater than 65495 may occur.

Reference

https://github.com/tass-belgium/picotcp/releases https://georgyg.com/home/picotcp-denial-of-service-cve-2023-30463/