Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2024-42040HistoryAug 23, 2024 - 3:15 p.m.
CVE-2024-42040
2024-08-2315:15:16
Debian Security Bug Tracker
security-tracker.debian.org
1
cve-2024-42040
vulnerability
buffer overflow
denex u-boot
net/bootp.c
dhcp
memory leakage
unix
AI Score
6.8
Confidence
Low
Buffer Overflow vulnerability in the net/bootp.c in DENEX U-Boot from its initial commit in 2002 (3861aa5) up to today on any platform allows an attacker on the local network to leak memory from four up to 32 bytes of memory stored behind the packet to the network depending on the later use of DHCP-provided parameters via crafted DHCP responses.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | u-boot | <= 2023.01+dfsg-2+deb12u1 | u-boot_2023.01+dfsg-2+deb12u1_all.deb |
| Debian | 11 | all | u-boot | <= 2021.01+dfsg-5 | u-boot_2021.01+dfsg-5_all.deb |
| Debian | 999 | all | u-boot | <= 2024.01+dfsg-5 | u-boot_2024.01+dfsg-5_all.deb |
| Debian | 13 | all | u-boot | <= 2024.01+dfsg-5 | u-boot_2024.01+dfsg-5_all.deb |
Related
cve
cve
CVE-2024-42040
2024-08-23 15:15:16
vulnrichment
vulnrichment
CVE-2024-42040
2024-08-23 00:00:00
nvd
nvd
CVE-2024-42040
2024-08-23 15:15:16
cvelist
cvelist
CVE-2024-42040
2024-08-23 00:00:00
osv
osv
CVE-2024-42040
2024-08-23 15:15:16