CVE-2021-27138

Опубликовано: 17 фев. 2021

Источник: nvd

CVSS3: 7.8

CVSS2: 6.8

EPSS Низкий

Описание

The boot loader in Das U-Boot before 2021.04-rc2 mishandles use of unit addresses in a FIT.

Ссылки

https://github.com/u-boot/u-boot/commit/3f04db891a353f4b127ed57279279f851c6b4917
Patch
Third Party Advisory
https://github.com/u-boot/u-boot/commit/79af75f7776fc20b0d7eb6afe1e27c00fdb4b9b4
Patch
Third Party Advisory
https://github.com/u-boot/u-boot/commit/b6f4c757959f8850e1299a77c8e5713da78e8ec0
Patch
Third Party Advisory
https://github.com/u-boot/u-boot/commit/3f04db891a353f4b127ed57279279f851c6b4917
Patch
Third Party Advisory
https://github.com/u-boot/u-boot/commit/79af75f7776fc20b0d7eb6afe1e27c00fdb4b9b4
Patch
Third Party Advisory
https://github.com/u-boot/u-boot/commit/b6f4c757959f8850e1299a77c8e5713da78e8ec0
Patch
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2025/09/msg00037.html

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:denx:u-boot:*:*:*:*:*:*:*:*

Версия до 2021.01 (включая)

cpe:2.3:a:denx:u-boot:2021.04:rc1:*:*:*:*:*:*

EPSS

Процентиль: 19%

0.0006

Низкий

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2021-27138

CVSS3: 7.8

ubuntu

почти 5 лет назад

The boot loader in Das U-Boot before 2021.04-rc2 mishandles use of unit addresses in a FIT.

CVE-2021-27138

CVSS3: 7.8

debian

почти 5 лет назад

The boot loader in Das U-Boot before 2021.04-rc2 mishandles use of uni ...

GHSA-grrh-mjp7-g52c

CVSS3: 7.8

github

больше 3 лет назад

The boot loader in Das U-Boot before 2021.04-rc2 mishandles use of unit addresses in a FIT.

EPSS

Процентиль: 19%

0.0006

Низкий

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

NVD-CWE-noinfo