We have identified a buffer overflow issue allowing out-of-bounds write when processing LLMNR or mDNS queries with very long DNS names. This issue only affects systems using Buffer Allocation Scheme 1 with LLMNR or mDNS enabled. Users should upgrade to the latest version and ensure any forked or derivative code is patched to incorporate the new fixes.
History

Wed, 04 Jun 2025 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Wed, 04 Jun 2025 17:15:00 +0000

Type Values Removed Values Added
Description We have identified a buffer overflow issue allowing out-of-bounds write when processing LLMNR or mDNS queries with very long DNS names. This issue only affects systems using Buffer Allocation Scheme 1 with LLMNR or mDNS enabled. Users should upgrade to the latest version and ensure any forked or derivative code is patched to incorporate the new fixes.
Title Out of Bounds Write in FreeRTOS-Plus-TCP
Weaknesses CWE-787
References
Metrics cvssV4_0

{'score': 7.5, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: AMZN

Published: 2025-06-04T17:09:54.718Z

Updated: 2025-06-04T18:18:46.071Z

Reserved: 2025-06-04T15:11:43.065Z

Link: CVE-2025-5688

cve-icon Vulnrichment

Updated: 2025-06-04T18:12:05.388Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2025-06-04T17:15:29.330

Modified: 2025-06-05T20:12:23.777

Link: CVE-2025-5688

cve-icon Redhat

No data.