Following are the integer overflow issues in the SimpleLink™ CC32XX SDK example libraries that can potentially lead to issues similar to heap overflows and remote code execution. These potential vulnerabilities cannot typically be used to compromise the device without another vulnerability allowing control of the function call parameters.
TI-PSIRT-2022-090141
Not applicable
Parts | SDK | SDK Version |
---|---|---|
CC3220R, CC3220S, CC3220SF, CC3230S, CC3230SF, CC3235S, CC3235SF | SIMPLELINK-CC32XX-SDK | v6.10.00.05 and earlier |
Fixes for these issues have been released in SIMPLELINK-CC32XX-SDK v7.10.00.13. It is recommended that customers of affected products apply these mitigations by updating the affected components with the latest versions.