CVE-2018-7039

CVE: CVE-2018-7039
Published: 2018-02-14T19:29Z
Description Language: en
Description: CCN-lite 2.0.0 Beta allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact because the ccnl_ndntlv_prependBlob function in ccnl-pkt-ndntlv.c can be called with wrong arguments. Specifically, there is an incorrect integer data type causing a negative third argument in some cases of crafted TLV data with inconsistent length information.
References:
https://github.com/cn-uofbasel/ccn-lite/issues/191