In Eclipse ThreadX before version 6.4.0, the Mtxinit() function in the Xtensa port was missing an array size check causing a memory overwrite. The affected file was ports/xtensa/xcc/src/txclib_lock.c
{ "vanir_signatures": [ { "signature_version": "v1", "target": { "function": "_Mtxinit", "file": "ports/xtensa/xcc/src/tx_clib_lock.c" }, "signature_type": "Function", "source": "https://github.com/eclipse-threadx/threadx/commit/39f3c86c61ec478720bac9fca8f17ccedb8f052b", "deprecated": false, "digest": { "length": 272.0, "function_hash": "21440705155404283821141681700921315961" }, "id": "CVE-2024-2214-1936b16f" }, { "signature_version": "v1", "target": { "file": "ports/xtensa/xcc/src/tx_clib_lock.c" }, "signature_type": "Line", "source": "https://github.com/eclipse-threadx/threadx/commit/39f3c86c61ec478720bac9fca8f17ccedb8f052b", "deprecated": false, "digest": { "line_hashes": [ "321615530020277052163727575189001966430", "76076730028992049536459261922763312508", "161729058754765427883402847621987807659", "248756517319654798557447821379620083935" ], "threshold": 0.9 }, "id": "CVE-2024-2214-fa92f5c0" } ] }