Security vulnerabilities and automated fixes for drone security issues
1 post found
A critical buffer overflow vulnerability was discovered and patched in the CRSF (Crossfire Serial Protocol) receiver packet handler, where attacker-controlled payload size fields were passed directly to `memcpy` without bounds checking. This class of vulnerability is particularly dangerous in embedded firmware because it can corrupt adjacent memory on microcontrollers, potentially allowing an attacker within RF range to hijack or crash a drone mid-flight. The fix adds proper size validation befo