U-boot@2019.07 Security Vulnerabilities and Issues — U-boot@2019.07 CVE List

Lucene search

DenxU-boot2019.07

4 matches found

CVE•added 2019/08/06 8:15 p.m.•159 views

CVE-2019-13106

Das U-Boot versions 2016.09 through 2019.07-rc4 can memset() too much data while reading a crafted ext4 filesystem, which results in a stack buffer overflow and likely code execution.

8.3CVSS7.8AI score0.00845EPSS

CVE•added 2019/07/29 3:15 p.m.•158 views

CVE-2019-13103

A crafted self-referential DOS partition table will cause all Das U-Boot versions through 2019.07-rc4 to infinitely recurse, causing the stack to grow infinitely and eventually either crash or overwrite other data.

7.1CVSS7.9AI score0.00108EPSS

CVE•added 2019/08/06 7:15 p.m.•155 views

CVE-2019-13104

In Das U-Boot versions 2016.11-rc1 through 2019.07-rc4, an underflow can cause memcpy() to overwrite a very large amount of data (including the whole stack) while reading a crafted ext4 filesystem.

7.8CVSS7.3AI score0.0029EPSS

CVE•added 2019/08/06 8:15 p.m.•71 views

CVE-2019-13105

Das U-Boot versions 2019.07-rc1 through 2019.07-rc4 can double-free a cached block of data when listing files in a crafted ext4 filesystem.

7.8CVSS7.4AI score0.00259EPSS