Barebox Security Vulnerabilities and Issues — Barebox CVE List

Lucene search

PengutronixBarebox

7 matches found

CVE•added 2025/02/19 2:15 a.m.•45 views

CVE-2024-57261

In barebox before 2025.01.0, request2size in common/dlmalloc.c has an integer overflow, a related issue to CVE-2024-57258.

7.1CVSS7AI score0.00039EPSS

CVE•added 2025/02/19 2:15 a.m.•45 views

CVE-2024-57262

In barebox before 2025.01.0, ext4fs_read_symlink has an integer overflow for zalloc (adding one to an le32 variable) via a crafted ext4 filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite, a related issue to CVE-2024-57256.

7.1CVSS7.2AI score0.00024EPSS

CVE•added 2020/06/07 8:15 p.m.•41 views

CVE-2020-13910

Pengutronix Barebox through v2020.05.0 has an out-of-bounds read in nfs_read_reply in net/nfs.c because a field of an incoming network packet is directly used as a length field without any bounds check.

9.1CVSS9.1AI score0.00433EPSS

CVE•added 2021/08/02 8:15 p.m.•34 views

CVE-2021-37847

crypto/digest.c in Pengutronix barebox through 2021.07.0 leaks timing information because memcmp is used during digest verification.

7.5CVSS7.4AI score0.00316EPSS

CVE•added 2021/08/02 8:15 p.m.•31 views

CVE-2021-37848

common/password.c in Pengutronix barebox through 2021.07.0 leaks timing information because strncmp is used during hash comparison.

7.5CVSS7.4AI score0.00316EPSS

CVE•added 2019/09/05 3:15 p.m.•29 views

CVE-2019-15937

Pengutronix barebox through 2019.08.1 has a remote buffer overflow in nfs_readlink_reply in net/nfs.c because a length field is directly used for a memcpy.

9.8CVSS9.7AI score0.00756EPSS

CVE•added 2019/09/05 3:15 p.m.•25 views

CVE-2019-15938

Pengutronix barebox through 2019.08.1 has a remote buffer overflow in nfs_readlink_req in fs/nfs.c because a length field is directly used for a memcpy.

9.8CVSS9.7AI score0.00756EPSS