Summary
This release fixes issues related to the parsing of network packets. We strongly recommend upgrading P-Net to improve its ability to handle malformed packets.
Please see the cybersecurity advisories list for more information. Full documentation is available at https://docs.rt-labs.com/p-net
Issues fixed
| ID | Summary | Component | Severity |
|---|---|---|---|
| 2389 | (CVE-2025-32396): oob write ExpectedSubmoduleBlockReq | P-Net | normal |
| 2390 | (CVE-2025-32405): oob write PF_BT_AR_VENDOR_BLOCK_REQ | P-Net | major |
| 2391 | (CVE-2025-32404): oob write pf_get_ar_prm_server_request | P-Net | major |
| 2392 | (CVE-2025-32403): oob write pf_get_mcr_request | P-Net | major |
| 2393 | (CVE-2025-32401): oob write pf_ppm_finish_buffer | P-Net | major |
| 2394 | (CVE-2025-32399): p-net hang | P-Net | major |
| 2395 | (CVE-2025-32402): oob write IODataObjectFrameOffset | P-Net | major |
| 2396 | (CVE-2025-32400): oob write ppm-init-buf | P-Net | major |
| 2397 | (CVE-2025-32398): NULL ptr deref RPCPtRequest | P-Net | major |
| 2398 | (CVE-2025-32397): oob write IRInfoBlock | P-Net | major |
Conformance tests
| Test Tool | Version | Result |
|---|---|---|
| PROFINET Test Bundle | 2.45.0.2 | PASS |