In raw\TCP.cpp in Matter (aka connectedhomeip or Project... · CVE-2024-56318 · GitHub Advisory Database · GitHub

In raw\TCP.cpp in Matter (aka connectedhomeip or Project...

Unreviewed Published Dec 19, 2024 to the GitHub Advisory Database • Updated Dec 19, 2024

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

In raw\TCP.cpp in Matter (aka connectedhomeip or Project CHIP) through 1.4.0.0 before 27ca6ec, there is a NULL pointer dereference in TCPBase::ProcessSingleMessage via TCP packets with zero messageSize, leading to denial of service.

References

Published by the National Vulnerability Database

Dec 18, 2024

Published to the GitHub Advisory Database Dec 19, 2024

Last updated Dec 19, 2024