CVE-2023-24822: 
NixOS vulnerability analysis and mitigation

RIOT-OS, an operating system designed for Internet of Things devices, was found to contain a vulnerability (CVE-2023-24822) in its network stack's 6LoWPAN frame processing functionality. Prior to version 2022.10, an attacker could trigger a NULL pointer dereference while encoding a 6LoWPAN IPHC header by sending a crafted frame to the device. This vulnerability was discovered and disclosed on April 24, 2023, affecting all versions of RIOT-OS before version 2022.10 (GitHub Advisory).

The vulnerability occurs during IPv6 header encoding when data is extracted from the next snippet in the packet. If all data is consumed by the header, the snippet is removed entirely. However, if the IPv6 header still contains a next header value, the firmware attempts to encode another header by reading from the next snippet. When no next snippet exists due to prior removal, a NULL pointer dereference occurs. The vulnerability has been assigned a CVSS v3.1 base score of 7.5 (HIGH) with vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H, indicating network attack vector, low complexity, and no required privileges or user interaction (GitHub Advisory).

The exploitation of this vulnerability results in a NULL pointer dereference that triggers a hard fault exception, leading to a denial of service condition. This means an attacker can cause the affected device to become unresponsive, impacting its availability (GitHub Advisory).

The vulnerability has been fixed in RIOT-OS version 2022.10. For systems running older versions, users can either upgrade to version 2022.10 or later, or manually backport the provided patches. The fixes are available in both the master branch and the 2022.10 release (GitHub Advisory).