Security Advisory

CVE-2024-2212

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-03-26 15:58:27

Last updated 2025-02-13 17:33:30

Assigner eclipse

State PUBLISHED

Description

In Eclipse ThreadX before 6.4.0, xQueueCreate() and xQueueCreateSet() functions from the FreeRTOS compatibility API (utility/rtos_compatibility_layers/FreeRTOS/tx_freertos.c) were missing parameter checks. This could lead to integer wraparound, under-allocations and heap buffer overflows.

← Browse all CVEs View on cve.org ↗