Dear RIOTers,
I am happy to announce that RIOT 2024.10 “FlexTape” has been released! 
Here are some of the highlights:
-
This release fixes some long-standing packet buffer leaks that occurred when using
gnrc_netif_pktqand 6LoWPAN ornetdev_new_api(#20983, #20834). -
A long standing-bug in the CC2538 radio driver has been fixed when processing corrupted frames, that before could render the device unresponsive. This can be triggered due to radio interference, but we also believe that an attacker within range of the radio could send crafted frames to reliably trigger the issue. We therefore consider this a denial of service vulnerability and advise all users of the CC2538 to upgrade to
2024.10or cherry-pick1b61216da. More details are published in the security advisory. -
With SUIT it is now easier to accept firmwares signed with different keys, e.g., a node build and signed with a development key can be configured to accept images signed with either the development key or the production key (#20858). The public keys are now also stored on the developer’s machine, so if a encrypted private key is used, you don’t need the decryption password to build a firmware, only for signing it (#20862).
-
THREAD_CREATE_STACKTESTis now the default whenDEVELHELPis used. -
This release saw the addition of the
adafruit-metro-m4-expressboard.
129 pull requests, composed of 255 commits, have been merged since the last release, and 5 issues have been solved. 29 people contributed with code in 119 days. 502 files have been touched with 142126 (+) insertions and 1896 deletions (-).
Feel free to check out the full list of changes in the release-notes.txt .
A big thank you to everybody who contributed!
Best regards,