RIOT

RIOT

RIOT is a real-time multi-threading operating system that supports a range of devices that are typically found in the Internet of Things (IoT): 8-bit, 16-bit and 32-bit microcontrollers.

RIOT is based on the following design principles: energy-efficiency, real-time capabilities, small memory footprint, modularity, and uniform API access, independent of the underlying hardware (this API offers partial POSIX compliance).

RIOT is developed by an international open source community which is independent of specific vendors (e.g. similarly to the Linux community). RIOT is licensed with LGPLv2.1, a copyleft license which fosters indirect business models around the free open-source software platform provided by RIOT, e.g. it is possible to link closed-source code with the LGPL code.

CVEs

CVE	Detail	Patch	POC	Type
2023-24817	github-security	commit	hoedur	CWE-119 CWE-191
2023-24818	github-security	commit	hoedur	CWE-476
2023-24819	github-security	commit	hoedur	CWE-131 CWE-787
2023-24820	github-security	commit	hoedur	CWE-191 CWE-787
2023-24821	github-security	commit	hoedur	CWE-191 CWE-787
2023-24822	github-security	commit	hoedur	CWE-476
2023-24823	github-security	commit	hoedur	CWE-787 CWE-843
2023-24825	github-security	commit	hoedur	CWE-252 CWE-476
2023-24826	github-security	commit	hoedur	CWE-824
2023-33973	github-security	commit	None	CWE-476
2023-33974	github-security	commit	None	CWE-362
2023-33975	github-security	commit	None	CWE-119 CWE-787
CVE-2021-41061	issue	none	none	CWE-330
CVE-2021-31664	none	PR	none	CWE-120
CVE-2021-31663	none	none	none	CWE-120
CVE-2021-31662		PR		CWE-120
CVE-2021-31661		PR		CWE-120
CVE-2021-31660		PR		CWE-120
CVE-2021-27698	issue			CWE-120
CVE-2021-27697	issue			CWE-120
CVE-2021-27427	detail			CWE-190
CVE-2021-27357	issue			CWE-120
CVE-2020-15350		PR		CWE-119 CWE-131
CVE-2019-17389		PR
CVE-2019-16754		PR		CWE-476
CVE-2019-15702	issue			CWE-835
CVE-2019-15134		PR		CWE-401
CVE-2019-1000006	issue	PR	RCE	CWE-787
CVE-2017-8289	issue	PR, PR		CWE-119