CVE-2024-57261
- EPSS 0.02%
- Veröffentlicht 19.02.2025 02:15:08
- Zuletzt bearbeitet 19.02.2025 02:15:08
In barebox before 2025.01.0, request2size in common/dlmalloc.c has an integer overflow, a related issue to CVE-2024-57258.
CVE-2024-57262
- EPSS 0.02%
- Veröffentlicht 19.02.2025 02:15:08
- Zuletzt bearbeitet 19.02.2025 02:15:08
In barebox before 2025.01.0, ext4fs_read_symlink has an integer overflow for zalloc (adding one to an le32 variable) via a crafted ext4 filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite, a relat...
CVE-2021-37847
- EPSS 0.32%
- Veröffentlicht 02.08.2021 20:15:08
- Zuletzt bearbeitet 21.11.2024 06:15:58
crypto/digest.c in Pengutronix barebox through 2021.07.0 leaks timing information because memcmp is used during digest verification.
CVE-2021-37848
- EPSS 0.32%
- Veröffentlicht 02.08.2021 20:15:08
- Zuletzt bearbeitet 21.11.2024 06:15:58
common/password.c in Pengutronix barebox through 2021.07.0 leaks timing information because strncmp is used during hash comparison.
CVE-2020-13910
- EPSS 0.43%
- Veröffentlicht 07.06.2020 20:15:10
- Zuletzt bearbeitet 21.11.2024 05:02:07
Pengutronix Barebox through v2020.05.0 has an out-of-bounds read in nfs_read_reply in net/nfs.c because a field of an incoming network packet is directly used as a length field without any bounds check.
CVE-2019-15937
- EPSS 0.76%
- Veröffentlicht 05.09.2019 15:15:12
- Zuletzt bearbeitet 21.11.2024 04:29:46
Pengutronix barebox through 2019.08.1 has a remote buffer overflow in nfs_readlink_reply in net/nfs.c because a length field is directly used for a memcpy.
CVE-2019-15938
- EPSS 0.76%
- Veröffentlicht 05.09.2019 15:15:12
- Zuletzt bearbeitet 21.11.2024 04:29:46
Pengutronix barebox through 2019.08.1 has a remote buffer overflow in nfs_readlink_req in fs/nfs.c because a length field is directly used for a memcpy.