This archive is retained to ensure existing URLs remain functional. It will not contain any emails sent to this mailing list after July 1, 2024. For all messages, including those sent before and after this date, please visit the new location of the archive at https://mailman.ripe.net/archives/list/[email protected]/

[iot-wg] serious vulnerabilities FreeRTOS

Previous message (by thread): [iot-wg] "The Internet of Threats: Fighting FUD with MUD"
Next message (by thread): [iot-wg] serious vulnerabilities FreeRTOS

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Jim Reid jim at rfc1035.com
Mon Oct 22 23:40:18 CEST 2018

As surely as day follows night, there’s news of another example of scary/buggy/crappy IoT firmware. A large number of security vulnerabilities have been found in FreeRTOS and other variants  which presumably share the same code base. These include information leaks, DoS and remote code execution. Nice. One of those variants is SafeRTOS -- oh the irony! -- that’s "certified for use in safety critical systems". Whoops!

https://blog.zimperium.com/freertos-tcpip-stack-vulnerabilities-put-wide-range-devices-risk-compromise-smart-homes-critical-infrastructure-systems/

According to the above link, "FreeRTOS and SafeRTOS have been used in a wide variety of industries: IoT, Aerospace, Medical, Automotive, and more.”.

The vulnerabilities are apparently in the TCP/IP stack. How is this possible? Rock-solid public domain TCP/IP code has been around since BSD4.4 20+ years ago. Or even earlier. Why would someone shun that, write their own code and do it badly? I just don’t understand the thinking(?) behind that.

Does anyone have more info on the actual devices/applications which could be vulnerable?

Previous message (by thread): [iot-wg] "The Internet of Threats: Fighting FUD with MUD"
Next message (by thread): [iot-wg] serious vulnerabilities FreeRTOS

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[ iot-wg Archives ]