Описание
Security update for u-boot
This update for u-boot fixes the following issues:
- CVE-2020-8432: Fixed a double free in the cmd/gpt.c do_rename_gpt_parts() function, which allowed an attacker to execute arbitrary code (bsc#1162198)
- CVE-2020-10648: Fixed improper signature verification during verified boot (bsc#1167209).
Список пакетов
SUSE Linux Enterprise Module for Basesystem 15 SP2
u-boot-rpiarm64-2020.01-10.9.1
u-boot-rpiarm64-doc-2020.01-10.9.1
u-boot-tools-2020.01-10.9.1
Ссылки
- Link for SUSE-SU-2020:3161-1
- E-Mail link for SUSE-SU-2020:3161-1
- SUSE Security Ratings
- SUSE Bug 1162198
- SUSE Bug 1167209
- SUSE CVE CVE-2020-10648 page
- SUSE CVE CVE-2020-8432 page
Описание
Das U-Boot through 2020.01 allows attackers to bypass verified boot restrictions and subsequently boot arbitrary images by providing a crafted FIT image to a system configured to boot the default configuration.
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15 SP2:u-boot-rpiarm64-2020.01-10.9.1
SUSE Linux Enterprise Module for Basesystem 15 SP2:u-boot-rpiarm64-doc-2020.01-10.9.1
SUSE Linux Enterprise Module for Basesystem 15 SP2:u-boot-tools-2020.01-10.9.1
Ссылки
- CVE-2020-10648
- SUSE Bug 1167209
Описание
In Das U-Boot through 2020.01, a double free has been found in the cmd/gpt.c do_rename_gpt_parts() function. Double freeing may result in a write-what-where condition, allowing an attacker to execute arbitrary code. NOTE: this vulnerablity was introduced when attempting to fix a memory leak identified by static analysis.
Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15 SP2:u-boot-rpiarm64-2020.01-10.9.1
SUSE Linux Enterprise Module for Basesystem 15 SP2:u-boot-rpiarm64-doc-2020.01-10.9.1
SUSE Linux Enterprise Module for Basesystem 15 SP2:u-boot-tools-2020.01-10.9.1
Ссылки
- CVE-2020-8432
- SUSE Bug 1162198