openRuyi-tutorials/buildroot
6
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

package/libcoap: security bump to v4.3.5a

Browse Source 
For more info on the release, see:

- https://github.com/obgm/libcoap/compare/v4.3.5...v4.3.5a
- https://github.com/obgm/libcoap/blob/release-4.3.5-patches/ChangeLog

Fixes the following vulnerabilities:

- CVE-2025-59391:
    A memory disclosure vulnerability exists in libcoap's OSCORE
    configuration parser in libcoap before release-4.3.5-patches. An out-
    of-bounds read may occur when parsing certain configuration values,
    allowing an attacker to infer or read memory beyond string boundaries
    in the .rodata section. This could potentially lead to information
    disclosure or denial of service.

    https://www.cve.org/CVERecord?id=CVE-2025-59391

- CVE-2025-65493:
    NULL pointer dereference in src/coap_openssl.c in OISM libcoap 4.3.5
    allows remote attackers to cause a denial of service via a crafted
    DTLS/TLS connection that triggers BIO_get_data() to return NULL.

    https://www.cve.org/CVERecord?id=CVE-2025-65493

- CVE-2025-65494:
    NULL pointer dereference in get_san_or_cn_from_cert() in
    src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to
    cause a denial of service via a crafted X.509 certificate that causes
    sk_GENERAL_NAME_value() to return NULL.

    https://www.cve.org/CVERecord?id=CVE-2025-65494

- CVE-2025-65495:
    Integer signedness error in tls_verify_call_back() in
    src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to
    cause a denial of service via a crafted TLS certificate that causes
    i2d_X509() to return -1 and be misused as a malloc() size parameter.

    https://www.cve.org/CVERecord?id=CVE-2025-65495

- CVE-2025-65496:
    NULL pointer dereference in coap_dtls_generate_cookie() in
    src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to
    cause a denial of service via a crafted DTLS handshake that triggers
    SSL_get_SSL_CTX() to return NULL.

    https://www.cve.org/CVERecord?id=CVE-2025-65496

- CVE-2025-65497:
    NULL pointer dereference in coap_dtls_generate_cookie() in
    src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to
    cause a denial of service via a crafted DTLS handshake that triggers
    SSL_get_SSL_CTX() to return NULL.

    https://www.cve.org/CVERecord?id=CVE-2025-65497

- CVE-2025-65498:
    NULL pointer dereference in coap_dtls_generate_cookie() in
    src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to
    cause a denial of service via a crafted DTLS handshake that triggers
    SSL_get_SSL_CTX() to return NULL.

    https://www.cve.org/CVERecord?id=CVE-2025-65498

- CVE-2025-65499:
    Array index error in tls_verify_call_back() in src/coap_openssl.c in
    OISM libcoap 4.3.5 allows remote attackers to cause a denial of
    service via a crafted DTLS handshake that triggers
    SSL_get_ex_data_X509_STORE_CTX_idx() to return -1.

    https://www.cve.org/CVERecord?id=CVE-2025-65499

- CVE-2025-65500:
    NULL pointer dereference in coap_dtls_generate_cookie() in
    src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to
    cause a denial of service via a crafted DTLS handshake that triggers
    SSL_get_SSL_CTX() to return NULL.

    https://www.cve.org/CVERecord?id=CVE-2025-65500

- CVE-2025-65501:
    Null pointer dereference in coap_dtls_info_callback() in OISM libcoap
    4.3.5 allows remote attackers to cause a denial of service via a DTLS
    handshake where SSL_get_app_data() returns NULL.

    https://www.cve.org/CVERecord?id=CVE-2025-65501

LICENSE Year updated see [1].

[1] https://github.com/obgm/libcoap/commit/c9135b6b26b978295a3e1312ff59cb7cb9b32251

Signed-off-by: Thomas Perale <thomas.perale@mind.be>
Signed-off-by: Julien Olivain <ju.o@free.fr>
This commit is contained in:
Thomas Perale
2026-01-11 11:05:51 +01:00
committed by Julien Olivain
parent 39aaf317d5
commit d3ebc63ce7
2 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files
package/libcoap/libcoap.hash
+2 -2
View File
@@ -1,4 +1,4 @@
# Locally calculated
sha256 a417ed26ec6c95c041b42353b5b6fad1602e2bf42a6e26c09863450e227b7b5f libcoap-4.3.5.tar.gz
sha256 bca78a2076ebb02179f93ab6cf2363b1256d878b540f810c238ea231ad5948ab libcoap-4.3.5a.tar.gz
sha256 09dd86a017bad210527085008cbf706609c58210897b69845af14099577e7eb7 COPYING
sha256 ecff7aa3af994b008dbb57c180753bd2a6c53fa6f8265a2486740f4cfd45280c LICENSE
sha256 1ba383ac337111d18334b2e230d02831b60913d137c3b653585d8e8675824111 LICENSE
package/libcoap/libcoap.mk
+1 -1
View File
@@ -4,7 +4,7 @@
#
################################################################################
LIBCOAP_VERSION = 4.3.5
LIBCOAP_VERSION = 4.3.5a
LIBCOAP_SITE = $(call github,obgm,libcoap,v$(LIBCOAP_VERSION))
LIBCOAP_INSTALL_STAGING = YES
LIBCOAP_LICENSE = BSD-2-Clause