CVE-2020-22284
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2020-22284
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-22284.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2020-22284
- Downstream
- Published
- 2021-07-22T20:15:07Z
- Modified
- 2025-07-10T10:51:59.342319Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Summary
- [none]
- Details
-
A buffer overflow vulnerability in the zepif_linkoutput() function of Free Software Foundation lwIP git head version and version 2.1.2 allows attackers to access sensitive information via a crafted 6LoWPAN packet.
- References
Affected packages
Debian:11 / lwip
Package
- Name
- lwip
- Purl
- pkg:deb/debian/lwip?arch=source
Debian:12 / lwip
Package
- Name
- lwip
- Purl
- pkg:deb/debian/lwip?arch=source
Debian:13 / lwip
Package
- Name
- lwip
- Purl
- pkg:deb/debian/lwip?arch=source
Git / git.savannah.nongnu.org/git/lwip.git
Affected ranges
- Type
- GIT
- Repo
- https://git.savannah.nongnu.org/git/lwip.git
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
Affected versions
Other
POST_PACK_REMOVE
POST_REMOVE_ARCH
PRE_ARCH_MOVE
PRE_PACK_REMOVE
PRE_leon-dhcp
STABLE-0_6_4
STABLE-0_6_5
STABLE-0_7_0
STABLE-1_0_0
STABLE-1_1_0
STABLE-1_1_0-RC1
STABLE-1_1_1
STABLE-1_3_0
STABLE-1_3_0-RC1
STABLE-1_3_1
STABLE-1_3_1-RC1
STABLE-1_3_1-RC2
STABLE-1_3_1-RC3
STABLE-1_3_2
STABLE-1_3_2-RC1
STABLE-1_4_0
STABLE-1_4_0-RC1
STABLE-1_4_0-RC2
STABLE-2_1_0_RC1
STABLE-2_1_0_RELEASE
STABLE-2_1_1_RELEASE
STABLE-2_1_2_RELEASE
cvs-repository-moved-to-git
master_at_STABLE-2_0_0
merged_from_main_to_DEVEL
merged_from_main_to_STABLE
merged_from_main_to_STABLE-0_7