📄 Description (English)
Fast DDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group
). Prior to versions 3.4.1, 3.3.1, and 2.6.11, when the security mode is enabled, modifying the DATA Submessage within an
SPDP packet sent by a publisher causes an Out-Of-Memory (OOM) condition, resulting in remote termination of Fast-DDS. If t
he fields of PID_IDENTITY_TOKEN or PID_PERMISSION_TOKEN in the DATA Submessage — specifically by tampering with the length
field in readPropertySeq — are modified, an integer overflow occurs, leading to an OOM during the resize operation. Versi
ons 3.4.1, 3.3.1, and 2.6.11 patch the issue.
🤖 AI Executive Summary
Fast DDS versions prior to 3.4.1, 3.3.1, and 2.6.11 contain a critical out-of-memory (OOM) vulnerability in security-enabled mode. An attacker can remotely trigger denial of service by tampering with DATA Submessage fields (PID_IDENTITY_TOKEN or PID_PERMISSION_TOKEN) in SPDP packets, causing integer overflow and process termination. This vulnerability affects distributed real-time systems commonly used in industrial IoT, autonomous systems, and critical infrastructure.
📄 Description (Arabic)
🤖 AI Intelligence Analysis Analyzed: May 2, 2026 11:01
🇸🇦 Saudi Arabia Impact Assessment
Saudi organizations using Fast DDS in critical sectors face significant risk: (1) Energy sector (ARAMCO, SABIC) — DDS is widely used in SCADA and industrial control systems for oil/gas operations; (2) Telecommunications (STC, Mobily) — DDS used in 5G network infrastructure and real-time signaling; (3) Government critical infrastructure — DDS deployments in smart city initiatives and defense systems; (4) Healthcare — Medical device networks and hospital IoT systems; (5) Aviation and Transportation — Real-time distributed systems for autonomous vehicles and air traffic control. Remote DoS attacks could disrupt operational technology networks and cause service outages.
🏢 Affected Saudi Sectors
Energy (Oil & Gas)
Telecommunications
Government & Critical Infrastructure
Healthcare
Aviation & Transportation
Manufacturing & Industrial IoT
Defense & Security
🎯 MITRE ATT&CK Techniques
⚖️ Saudi Risk Score (AI)
8.2
/ 10.0
🔧 Remediation Steps (English)
IMMEDIATE ACTIONS:
1. Identify all Fast DDS deployments in your environment using network scanning and software inventory tools
2. Prioritize systems with security mode enabled, as they are vulnerable
3. Isolate affected systems from untrusted networks if immediate patching is not possible
PATCHING GUIDANCE:
1. Upgrade Fast DDS to version 3.4.1, 3.3.1, or 2.6.11 or later immediately
2. For Debian systems (11, 12, 13), apply security updates from official repositories
3. Test patches in non-production environments first, particularly for critical OT systems
4. Coordinate patching with operational windows to minimize downtime
COMPENSATING CONTROLS (if patching delayed):
1. Implement network segmentation to restrict SPDP packet sources
2. Deploy firewall rules to limit DDS discovery traffic (UDP port 7400-7410) to trusted networks only
3. Monitor for abnormal SPDP packet patterns and OOM events
4. Disable DDS security mode temporarily if operationally feasible
DETECTION RULES:
1. Monitor for repeated process crashes of Fast DDS applications
2. Alert on memory exhaustion events correlated with SPDP traffic
3. Detect malformed SPDP packets with suspicious PID_IDENTITY_TOKEN or PID_PERMISSION_TOKEN length fields
4. Log and alert on DATA Submessage parsing errors in DDS middleware logs
🔧 خطوات المعالجة (العربية)
الإجراءات الفورية:
1. تحديد جميع نشرات Fast DDS في بيئتك باستخدام أدوات المسح والمخزون
2. إعطاء الأولوية للأنظمة مع تفعيل وضع الأمان
3. عزل الأنظمة المتأثرة عن الشبكات غير الموثوقة إذا لم يكن الترقيع الفوري ممكناً
إرشادات الترقيع:
1. ترقية Fast DDS إلى الإصدار 3.4.1 أو 3.3.1 أو 2.6.11 أو أحدث فوراً
2. لأنظمة Debian (11، 12، 13)، تطبيق تحديثات الأمان من المستودعات الرسمية
3. اختبار التصحيحات في بيئات غير الإنتاج أولاً، خاصة لأنظمة OT الحرجة
4. تنسيق الترقيع مع نوافذ التشغيل لتقليل وقت التوقف
الضوابط البديلة (إذا تأخر الترقيع):
1. تنفيذ تقسيم الشبكة لتقييد مصادر حزم SPDP
2. نشر قواعد جدار الحماية لتحديد حركة اكتشاف DDS (منافذ UDP 7400-7410) للشبكات الموثوقة فقط
3. مراقبة أنماط حزم SPDP غير الطبيعية وأحداث OOM
4. تعطيل وضع أمان DDS مؤقتاً إذا كان ممكناً من الناحية التشغيلية
قواعد الكشف:
1. مراقبة أعطال العملية المتكررة لتطبيقات Fast DDS
2. تنبيه على أحداث استنزاف الذاكرة المرتبطة بحركة SPDP
3. كشف حزم SPDP المشوهة مع حقول PID_IDENTITY_TOKEN أو PID_PERMISSION_TOKEN المريبة
4. تسجيل والتنبيه على أخطاء تحليل DATA Submessage في سجلات وسيط DDS
📋 Regulatory Compliance Mapping
🟢 NCA ECC 2024
ECC 2024 A.12.6.1 — Management of technical vulnerabilities
ECC 2024 A.12.2.1 — Change management procedures
ECC 2024 A.14.2.1 — Secure development policy
ECC 2024 A.8.1.3 — Segregation of duties
🔵 SAMA CSF
ID.RA-1 — Asset management and vulnerability identification
PR.IP-12 — Security patch management
DE.CM-8 — Malicious code detection
RS.RP-1 — Response planning
🟡 ISO 27001:2022
A.12.3.1 — Segregation of development, test and production environments
A.14.2.1 — Secure development policy and procedures
A.12.6.1 — Management of technical vulnerabilities
A.12.2.1 — Change management
🟣 PCI DSS v4.0.1
Requirement 6.2 — Security patches and updates
Requirement 11.2 — Vulnerability scanning
🔗 References & Sources 4
🔗
https://github.com/eProsima/Fast-DDS/commit/354218514d32beac963ff5c306f1cf159ee37c5f
security-advisories@github.com
Patch
🔗
https://github.com/eProsima/Fast-DDS/commit/a726e6a5daba660418d1f7c05b6f203c17747d2b
security-advisories@github.com
Patch
🔗
https://github.com/eProsima/Fast-DDS/commit/ced3b6f92d928af1eae77d5fe889878128ad421a
security-advisories@github.com
Patch
🔗
https://security-tracker.debian.org/tracker/CVE-2025-62599
security-advisories@github.com
Third Party Advisory
📦 Affected Products / CPE 6 entries
eprosima:fast_dds
eprosima:fast_dds
eprosima:fast_dds:3.4.0
debian:debian_linux:11.0
debian:debian_linux:12.0
debian:debian_linux:13.0