31 matches found
EUVD-2020-6117
Malware in sbrugna...
EUVD-2021-24327
Malware in sbrugna...
EUVD-2019-6839
Malware in sbrugna...
CVE-2021-37847
crypto/digest.c in Pengutronix barebox through 2021.07.0 leaks timing information because memcmp is used during digest verification...
CVE-2021-37848
common/password.c in Pengutronix barebox through 2021.07.0 leaks timing information because strncmp is used during hash comparison...
CVE-2020-13910
Pengutronix Barebox through v2020.05.0 has an out-of-bounds read in nfsreadreply in net/nfs.c because a field of an incoming network packet is directly used as a length field without any bounds check...
CVE-2019-15937
Pengutronix barebox through 2019.08.1 has a remote buffer overflow in nfsreadlinkreply in net/nfs.c because a length field is directly used for a memcpy...
CVE-2019-15938
Pengutronix barebox through 2019.08.1 has a remote buffer overflow in nfsreadlinkreq in fs/nfs.c because a length field is directly used for a memcpy...
CVE-2021-37848
common/password.c in Pengutronix barebox through 2021.07.0 leaks timing information because strncmp is used during hash comparison...
CVE-2021-37847
crypto/digest.c in Pengutronix barebox through 2021.07.0 leaks timing information because memcmp is used during digest verification...
CVE-2021-37848
common/password.c in Pengutronix barebox through 2021.07.0 leaks timing information because strncmp is used during hash comparison...
CVE-2021-37847
crypto/digest.c in Pengutronix barebox through 2021.07.0 leaks timing information because memcmp is used during digest verification...
Design/Logic Flaw
crypto/digest.c in Pengutronix barebox through 2021.07.0 leaks timing information because memcmp is used during digest verification...
CVE-2021-37848
common/password.c in Pengutronix barebox through 2021.07.0 leaks timing information because strncmp is used during hash comparison...
CVE-2021-37847
crypto/digest.c in Pengutronix barebox through 2021.07.0 leaks timing information because memcmp is used during digest verification...
Pengutronix barebox 信息泄露漏洞
Pengutronix barebox is a bootloader used in embedded Linux systems. A security vulnerability exists in barebox that stems from common password. in Pengutronix barebox through 2021.07.0 leaks time information because strncmp is used during hash comparison...
Pengutronix barebox 信息泄露漏洞
Pengutronix barebox is a bootloader used in embedded Linux systems. A security vulnerability exists in barebox, which leaks time information in crypto digest.c in penguin tronix barebox through 2021.07.0 due to the use of memcmp during digest validation...
CVE-2020-13910
Pengutronix Barebox through v2020.05.0 has an out-of-bounds read in nfsreadreply in net/nfs.c because a field of an incoming network packet is directly used as a length field without any bounds check...
CVE-2020-13910
Pengutronix Barebox through v2020.05.0 has an out-of-bounds read in nfsreadreply in net/nfs.c because a field of an incoming network packet is directly used as a length field without any bounds check...
Out-of-bounds
Pengutronix Barebox through v2020.05.0 has an out-of-bounds read in nfsreadreply in net/nfs.c because a field of an incoming network packet is directly used as a length field without any bounds check...