Astra Linux - уязвимость в u-boot

Integer overflows in memory allocation in Das U-Boot before 2025.01-rc1 occur due to a crafted squashfs filesystem using sbrk, request2size, or because ptrdifft is mishandled on x8664...

Astra Linux - уязвимость в u-boot

A issue was discovered in Das U-Boot during the period from 2019.07. There is a stack-based buffer overflow in the nfshandler reply helper function: nfsmountreply...

Astra Linux - уязвимость в u-boot

A issue was discovered in Das U-Boot during the period from 2019.07. There is an unbounded memcpy operation with a failed length check at nfsreadreply, when calling storeblock in the NFSv3 case...

CVE-2022-33967

squashfs filesystem implementation of U-Boot versions from v2020.10-rc2 to v2022.07-rc5 contains a heap-based buffer overflow vulnerability due to a defect in the metadata reading process. Loading a specially crafted squashfs image may lead to a denial-of-service DoS condition or arbitrary code...

EUVD-2019-4647

Malware in sbrugna...

EUVD-2019-5445

Malware in sbrugna...

EUVD-2019-5443

Malware in sbrugna...

EUVD-2019-2767

Malware in sbrugna...

EUVD-2018-1878

Malware in sbrugna...

EUVD-2018-15754

Malware in sbrugna...

EUVD-2025-23651

Malicious code in bioql PyPI...

EUVD-2022-34616

Malicious code in bioql PyPI...

Debian dla-4320 : u-boot - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4320 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4320-1 [email protected]...

PT-2025-31971 · U-Boot +1 · U-Boot +1

Name of the Vulnerable Software and Affected Versions: U-Boot version 1.1.3 Description: A lack of signature verification in the bootloader allows attackers to install crafted firmware files, leading to arbitrary code execution. Recommendations: Update to a newer version that includes signature...

CVE-2023-48425

U-Boot vulnerability resulting in persistent Code Execution...

CVE-2023-48424

U-Boot shell vulnerability resulting in Privilege escalation in a production device...

CVE-2022-30790

Das U-Boot 2022.01 has a Buffer Overflow, a different issue than CVE-2022-30552...

CVE-2019-14197

An issue was discovered in Das U-Boot through 2019.07. There is a read of out-of-bounds data at nfsreadreply...

CVE-2019-14199

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a netprocessreceivedpacket integer underflow during an udppackethandler call...

CVE-2019-14195

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with unvalidated length at nfsreadlinkreply in the "else" block after calculating the new path length...