Tag: cve-2022-0324 (1)CVE Reproduction > Reproducing CVE-2022-0324: Buffer Overflow in dhcp6relay of SONiCVulnerability: CVE-2022-0324 breaks the invariant that SONiC’s dhcp6relay must validate DHCPv6 option/payload lengths so it never copies more bytes than the destination buffer can hold.The invariant is violated when a remote attacker sends a crafted DHCPv6 packet that reaches a memcpy with an unchecked length, causing an out-of-bounds write (buffer overflow).stack-buffer-overflow cve-2022-0324 dhcp6relay SONiC sink-to-source February 8, 2026 • November 4, 2025 • Research