GNU/Linux ◆ xterm-256color ◆ bash 1796 views

This recording shows a proof of concept example of CVE-2021-38445 which leads ROS 2 Nodes to either crash or execute arbitrary code due to DDS not handling properly the length of the PID_BUILTIN_ENDPOINT_QOS parameter within RTPS’s RTPSSubMessage_DATA submessage.

This flaw affect the OpenDDS DDS implementation and was fixed in OpenDDS >3.18.1. For additional information and more tutorials, refer to the Robot Hacking Manual (RHM).