An exploitable arbitrary memory read vulnerability exists in the MQTT packet-parsing functionality of Cesanta Mongoose 6.13. It is a heap-based buffer over-read in mgmqttnextsubscribetopic. A specially crafted MQTT SUBSCRIBE packet can cause an arbitrary out-of-bounds memory read potentially resulting in information disclosure and denial of service. An attacker needs to send a specially crafted MQTT packet over the network to trigger this vulnerability.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "19.10.2~ds0-1build1", "binary_name": "smplayer" }, { "binary_version": "19.10.2~ds0-1build1", "binary_name": "smplayer-dbgsym" }, { "binary_version": "19.10.2~ds0-1build1", "binary_name": "smplayer-l10n" } ] }