Primary

Context

Zephyr Out-of-Bounds Read Vulnerability in DNS QName Copy Function

Vulnerability

A memory safety vulnerability has been identified in the Zephyr project, specifically in versions through 4.0. The issue arises in the 'dns_copy_qname' function within 'dns_pack.c', where a 'memcpy' operation is performed with an untrusted source buffer. The function fails to validate whether the source buffer is sufficiently large to accommodate the data being copied, leading to potential out-of-bounds reads.

Impact

This vulnerability can cause a crash and denial-of-service on embedded devices with memory protection. For devices lacking memory protection, it may result in incorrect and unpredictable behavior.

Remediation

Users can apply the patch available in the main branch or in the v3.7.0 and v4.0.0 tags. Instructions for applying the patch can be found in the Zephyr GitHub repository.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

2.5

exploitability

6.0

remediation

6.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

2.5

exploitability

6.0

remediation

6.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Zephyr Out-of-Bounds Read Vulnerability in DNS QName Copy Function

Vulnerability

Impact

Remediation

Affected Products

Zephyr

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating