CVE-2025-5688: Out of Bounds Write in FreeRTOS-Plus-TCP
We have identified a buffer overflow issue allowing out-of-bounds write when processing LLMNR or mDNS queries with very long DNS names. This issue only affects systems using Buffer Allocation Scheme 1 with LLMNR or mDNS enabled. Users should upgrade to the latest version and ensure any forked or derivative code is patched to incorporate the new fixes.
Affected Software
Event History
Frequently Asked Questions
What is the severity of CVE-2025-5688?
CVE-2025-5688 is classified as a high-severity vulnerability due to its potential for a buffer overflow leading to out-of-bounds writes.
How do I fix CVE-2025-5688?
To mitigate CVE-2025-5688, users should upgrade to the latest version of FreeRTOS-Plus-TCP that addresses this vulnerability.
Which systems are affected by CVE-2025-5688?
CVE-2025-5688 affects systems using Buffer Allocation Scheme 1 with LLMNR or mDNS enabled.
What type of vulnerability is CVE-2025-5688?
CVE-2025-5688 is a buffer overflow vulnerability that allows for out-of-bounds writes during the processing of long DNS names.
What should I do if I cannot upgrade to fix CVE-2025-5688?
If an upgrade is not feasible, consider disabling LLMNR and mDNS to minimize exposure to CVE-2025-5688.