Unchecked Return Value
CVE-2021-3911
Summary
If the ROA that a repository returns contains too many bits for the IP address then OctoRPKI before v1.4.0 will crash.
- LOW
- NETWORK
- NONE
- UNCHANGED
- REQUIRED
- NONE
- NONE
- HIGH
CWE-252 - Unchecked Return Value
The software does not check the return value from a method or function, which can prevent it from detecting unexpected states and conditions.
References
Advisory Timeline
- Published
