Security vulnerabilities and automated fixes for ax25 issues
1 post found
A critical heap buffer overflow vulnerability was discovered and patched in `src/ax25.c`, where a `memcpy` operation blindly trusted an attacker-controlled packet length field without validating it against the destination buffer's allocated size. This class of vulnerability is particularly dangerous because it allows remote attackers — anyone who can transmit an AX.25 packet over RF or a network feed — to corrupt heap memory, potentially leading to arbitrary code execution. The fix introduces pr