lwip-devel
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [lwip-devel] [bug #66058] Assertion "sys_timeout: timeout != NULL


From: Eric Koldeweij
Subject: Re: [lwip-devel] [bug #66058] Assertion "sys_timeout: timeout != NULL
Date: Sat, 11 Jan 2025 18:03:33 +0100
User-agent: Mozilla Thunderbird

Mohammad,

Glad to see the patch fixes the issue. I am no authority on the matter but I think it's not a CVE-worthy issue. It is a crash which always happens if you do not use the patch or override the number of timers yourself, it's simply there or it isn't. There is (I think) no way an outsider can trigger this issue - it's always caught during development. That said, it can take (it did for me) quite a bit of time to find why it's asserting and the fix should be included in mainstream LWIP.

Regards,

Eric.


On 1/11/25 08:56, Mohammad wrote:
Follow-up Comment #3, bug #66058 (group lwip):

[comment #2 comment #2:]
There is an error in the calculation of the amount of timers needed,
LWIP_NUM_SYS_TIMEOUT_INTERNAL. It fails to include a timer for DHCPv6 if it
is requested. It is used as a default value for MEMP_NUM_SYS_TIMEOUT so if it
is not overridden the amount of timers needed is too low and the assert will
occur.
Please see if error still occurs with attached patch. In any case the patch
should be pushed.

(file #56673)

Thank you for the update. I downloaded the latest version and tested it with
the data generated by AFL. The issue is resolved with the patch applied, and
no crashes were observed.

Could this issue potentially qualify for a CVE?


     _______________________________________________________

Reply to this item at:

   <https://savannah.nongnu.org/bugs/?66058>

_______________________________________________
Message sent via Savannah
https://savannah.nongnu.org/

_______________________________________________
lwip-devel mailing list
lwip-devel@nongnu.org
https://lists.nongnu.org/mailman/listinfo/lwip-devel



reply via email to

[Prev in Thread] Current Thread [Next in Thread]