[lwip-devel] [bug #58724] Treck Ripple20 Issues in LWIP

[Subhan Waizi]

Follow-up Comment #3, bug #58724 (project lwip):

> But if you have more details at hand, feel free to support us in checking if
these issues exist in lwIP.

Unfortunately I lack the technical background and implementation details
concerning the LwIP stack. I encountered some script that might reveal if your
product is affected by some / all of the Ripple20 vulnerabilities
(https://github.com/corelight/ripple20) but I'm not sure if that can be run as
easily on devices that don't run the Treck stack.

Well most of the 19 vulnerabilities had "improper handling of length parameter
- cwe id 130" and "improper input validation - cwe id 20" as their common cwe
(common weakness enumeration). The vulnerabilities with cwe id 130 seemed to
be the most severe ones (all of them having a security severity score above 9
according to CVSS which is defined as "likely to have a catastrophic adverse
effect on the organization or individuals associated with the organization
(e.g., employees, customers)." according to CVSS. 

We'd have different possibilities here:

Reassure that LwIP does have a decent amount of test cases for those common
weaknesses (20 and 130 - input validation of length and input data).

Give a try to the Ripple20 script and try to run it on a LwIP V1 and V2 device
if possible.

    _______________________________________________________

Reply to this item at:

  <https://savannah.nongnu.org/bugs/?58724>

_______________________________________________
  Message sent via Savannah
  https://savannah.nongnu.org/