Volerion logoVolerion
Volerion logoVolerion

Firmament-Autopilot FMT-Firmware Buffer Overflow Vulnerability in task_mavobc_entry Function

Vulnerability

A buffer overflow vulnerability has been identified in Firmament-Autopilot FMT-Firmware commit de5aec. The issue arises in the task_mavobc_entry function within the task communication module, where the default stack size of 4096 bytes may be insufficient. This discrepancy can lead to a potential stack overflow, as the function's call stack can exceed 4400 bytes under certain conditions.

Impact

Exploitation of this vulnerability could lead to a stack overflow, potentially causing a buffer overflow condition.

Reproduction

To reproduce this vulnerability, modify the rtconfig.py file to include flags that enable stack usage tracking. After building the firmware with these flags, the generated stack usage file can be analyzed to confirm that the task_mavobc_entry function exceeds the allocated stack size, creating a risk of overflow.

Remediation

Increase the stack size for the task_mavobc_entry function to accommodate the observed stack usage.

Added: May 13, 2026, 6:51 PM
Updated: May 13, 2026, 6:51 PM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
0.6
exploitability
4.6
remediation
0.0
relevance
8.2
threat
6.4
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.