CVE-2025-5688 | THREATINT

Description

We have identified a buffer overflow issue allowing out-of-bounds write when processing LLMNR or mDNS queries with very long DNS names. This issue only affects systems using Buffer Allocation Scheme 1 with LLMNR or mDNS enabled. Users should upgrade to the latest version and ensure any forked or derivative code is patched to incorporate the new fixes.

PUBLISHED Reserved 2025-06-04 | Published 2025-06-04 | Updated 2025-10-14 | Assigner AMZN

HIGH: 7.5CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-787: Out-of-bounds Write

Product status

Default status

unaffected

2.3.4 (semver) before 4.3.2

affected

References

aws.amazon.com/security/security-bulletins/AWS-2025-012/ vendor-advisory

github.com/FreeRTOS/FreeRTOS-Plus-TCP/releases/tag/V4.3.2 patch

github.com/...us-TCP/security/advisories/GHSA-5x4f-fvv8-wr65 vendor-advisory

cve.org (CVE-2025-5688)

nvd.nist.gov (CVE-2025-5688)

Download JSON