CVE-2019-14198

Опубликовано: 31 июл. 2019

Источник: debian

Описание

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv3 case.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
u-boot	fixed	2020.01+dfsg-1		package
u-boot	ignored		buster	package
u-boot	no-dsa		stretch	package
u-boot	no-dsa		jessie	package

Примечания

https://blog.semmle.com/uboot-rce-nfs-vulnerability/
https://gitlab.denx.de/u-boot/u-boot/commit/aa207cf3a6d68f39d64cd29057a4fb63943e9078

Связанные уязвимости

CVE-2019-14198

CVSS3: 9.8

ubuntu

больше 6 лет назад

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv3 case.

CVE-2019-14198

CVSS3: 9.8

nvd

больше 6 лет назад

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv3 case.

CVE-2019-14198

msrc

5 месяцев назад

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv3 case.

GHSA-x53c-3c7r-79j9

github

больше 3 лет назад

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv3 case.

BDU:2025-13591

CVSS3: 9.8

fstec

больше 6 лет назад

Уязвимость функции nfs_read_reply компонента net/nfs.c загрузчика U-Boot, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании