U-boot Security Vulnerabilities and Issues — U-boot CVE List

Lucene search

DenxU-boot

14 matches found

CVE•added 2019/07/31 1:15 p.m.•164 views

CVE-2019-14196

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_lookup_reply.

9.8CVSS8.4AI score0.00345EPSS

CVE•added 2019/07/29 3:15 p.m.•158 views

CVE-2019-13103

A crafted self-referential DOS partition table will cause all Das U-Boot versions through 2019.07-rc4 to infinitely recurse, causing the stack to grow infinitely and eventually either crash or overwrite other data.

7.1CVSS7.9AI score0.00108EPSS

CVE•added 2019/07/31 1:15 p.m.•140 views

CVE-2019-14193

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with an unvalidated length at nfs_readlink_reply, in the "if" block after calculating the new path length.

9.8CVSS8.4AI score0.00433EPSS

CVE•added 2019/07/31 1:15 p.m.•139 views

CVE-2019-14202

An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_readlink_reply.

9.8CVSS8.7AI score0.00459EPSS

CVE•added 2019/07/31 1:15 p.m.•138 views

CVE-2019-14192

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an nc_input_packet call.

9.8CVSS8.3AI score0.00334EPSS

CVE•added 2019/07/31 1:15 p.m.•138 views

CVE-2019-14201

An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_lookup_reply.

9.8CVSS8.7AI score0.00459EPSS

CVE•added 2019/07/31 1:15 p.m.•137 views

CVE-2019-14197

An issue was discovered in Das U-Boot through 2019.07. There is a read of out-of-bounds data at nfs_read_reply.

9.1CVSS8.3AI score0.00468EPSS

CVE•added 2019/07/31 1:15 p.m.•137 views

CVE-2019-14200

An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: rpc_lookup_reply.

9.8CVSS8.7AI score0.00459EPSS

CVE•added 2019/07/31 1:15 p.m.•136 views

CVE-2019-14194

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv2 case.

9.8CVSS8.4AI score0.00425EPSS

CVE•added 2019/07/31 1:15 p.m.•134 views

CVE-2019-14199

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an *udp_packet_handler call.

9.8CVSS8.3AI score0.00559EPSS

CVE•added 2019/07/31 1:15 p.m.•134 views

CVE-2019-14204

An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_umountall_reply.

9.8CVSS8.7AI score0.00459EPSS

CVE•added 2019/07/31 1:15 p.m.•133 views

CVE-2019-14203

An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_mount_reply.

9.8CVSS8.7AI score0.00459EPSS

CVE•added 2019/07/31 1:15 p.m.•130 views

CVE-2019-14198

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv3 case.

9.8CVSS8.4AI score0.00433EPSS

CVE•added 2019/07/31 1:15 p.m.•129 views

CVE-2019-14195

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with unvalidated length at nfs_readlink_reply in the "else" block after calculating the new path length.

9.8CVSS8.4AI score0.00425EPSS