In this blog post we analyze a heap overflow vulnerability we discovered in the IPv6 stack of OpenBSD, more specifically in its slaacd. This issue, whose root cause can be found in the mishandling of Router Advertisement messages containing a DNSSL option with a malformed domain label, was patched by OpenBSD on March 21, 2022. These bugs affect 12 i.MX processors built by NXP Semiconductors. The most severe of them could allow an attacker attached to the same physical link to gain remote code execution as root on vulnerable systems.”]
Source: https://blog.quarkslab.com/category/vulnerability.html