Information on source package u-boot

Available versions

ReleaseVersion
buster2019.01+dfsg-7
bullseye2021.01+dfsg-5
bookworm2022.04+dfsg-2
sid2022.07+dfsg-1

Open issues

BugbusterbullseyebookwormsidDescription
CVE-2022-34835vulnerable (no DSA)vulnerable (no DSA)vulnerablefixedIn Das U-Boot through 2022.07-rc5, an integer signedness error and res ...
CVE-2022-33967vulnerable (no DSA)vulnerable (no DSA)vulnerablefixedsquashfs filesystem implementation of U-Boot versions from v2020.10-rc ...
CVE-2022-33103vulnerable (no DSA)vulnerable (no DSA)vulnerablefixedDas U-Boot from v2020.10 to v2022.07-rc3 was discovered to contain an ...
CVE-2022-30790vulnerable (no DSA)vulnerable (no DSA)vulnerablefixedDas U-Boot 2022.01 has a Buffer Overflow, a different issue than CVE-2 ...
CVE-2022-30767fixedvulnerable (no DSA, ignored)vulnerablefixednfs_lookup_reply in net/nfs.c in Das U-Boot through 2022.04 (and throu ...
CVE-2022-30552vulnerable (no DSA)vulnerable (no DSA)vulnerablefixedDas U-Boot 2022.01 has a Buffer Overflow. ...
CVE-2022-2347vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableThere exists an unchecked length field in UBoot. The U-Boot DFU implem ...
CVE-2021-27138vulnerable (no DSA)vulnerable (no DSA)fixedfixedThe boot loader in Das U-Boot before 2021.04-rc2 mishandles use of uni ...
CVE-2021-27097vulnerable (no DSA)vulnerable (no DSA)fixedfixedThe boot loader in Das U-Boot before 2021.04-rc2 mishandles a modified ...
CVE-2020-10648vulnerable (no DSA, ignored)fixedfixedfixedDas U-Boot through 2020.01 allows attackers to bypass verified boot re ...
CVE-2020-8432vulnerable (no DSA, ignored)fixedfixedfixedIn Das U-Boot through 2020.01, a double free has been found in the cmd ...
CVE-2019-14204vulnerable (no DSA, ignored)fixedfixedfixedAn issue was discovered in Das U-Boot through 2019.07. There is a stac ...
CVE-2019-14203vulnerable (no DSA, ignored)fixedfixedfixedAn issue was discovered in Das U-Boot through 2019.07. There is a stac ...
CVE-2019-14202vulnerable (no DSA, ignored)fixedfixedfixedAn issue was discovered in Das U-Boot through 2019.07. There is a stac ...
CVE-2019-14201vulnerable (no DSA, ignored)fixedfixedfixedAn issue was discovered in Das U-Boot through 2019.07. There is a stac ...
CVE-2019-14200vulnerable (no DSA, ignored)fixedfixedfixedAn issue was discovered in Das U-Boot through 2019.07. There is a stac ...
CVE-2019-14199vulnerable (no DSA, ignored)fixedfixedfixedAn issue was discovered in Das U-Boot through 2019.07. There is an unb ...
CVE-2019-14198vulnerable (no DSA, ignored)fixedfixedfixedAn issue was discovered in Das U-Boot through 2019.07. There is an unb ...
CVE-2019-14197vulnerable (no DSA, ignored)fixedfixedfixedAn issue was discovered in Das U-Boot through 2019.07. There is a read ...
CVE-2019-14196vulnerable (no DSA, ignored)fixedfixedfixedAn issue was discovered in Das U-Boot through 2019.07. There is an unb ...
CVE-2019-14195vulnerable (no DSA, ignored)fixedfixedfixedAn issue was discovered in Das U-Boot through 2019.07. There is an unb ...
CVE-2019-14194vulnerable (no DSA, ignored)fixedfixedfixedAn issue was discovered in Das U-Boot through 2019.07. There is an unb ...
CVE-2019-14193vulnerable (no DSA, ignored)fixedfixedfixedAn issue was discovered in Das U-Boot through 2019.07. There is an unb ...
CVE-2019-14192vulnerable (no DSA, ignored)fixedfixedfixedAn issue was discovered in Das U-Boot through 2019.07. There is an unb ...
CVE-2019-13106vulnerable (no DSA, ignored)fixedfixedfixedDas U-Boot versions 2016.09 through 2019.07-rc4 can memset() too much ...
CVE-2019-13105vulnerable (no DSA, ignored)fixedfixedfixedDas U-Boot versions 2019.07-rc1 through 2019.07-rc4 can double-free a ...
CVE-2019-13104vulnerable (no DSA, ignored)fixedfixedfixedIn Das U-Boot versions 2016.11-rc1 through 2019.07-rc4, an underflow c ...
CVE-2019-13103vulnerable (no DSA, ignored)fixedfixedfixedA crafted self-referential DOS partition table will cause all Das U-Bo ...

Open unimportant issues

BugbusterbullseyebookwormsidDescription
CVE-2018-1000205vulnerablevulnerablevulnerablevulnerableU-Boot contains a CWE-20: Improper Input Validation vulnerability in V ...
CVE-2018-18440vulnerablevulnerablevulnerablevulnerableDENX U-Boot through 2018.09-rc1 has a locally exploitable buffer overf ...
CVE-2018-18439vulnerablevulnerablevulnerablevulnerableDENX U-Boot through 2018.09-rc1 has a remotely exploitable buffer over ...
CVE-2017-3226vulnerablevulnerablevulnerablevulnerableDas U-Boot is a device bootloader that can read its configuration from ...
CVE-2017-3225vulnerablevulnerablevulnerablevulnerableDas U-Boot is a device bootloader that can read its configuration from ...

Resolved issues

BugDescription
CVE-2019-11690gen_rand_uuid in lib/uuid.c in Das U-Boot v2014.04 through v2019.04 la ...
CVE-2019-11059Das U-Boot 2016.11-rc1 through 2019.04 mishandles the ext4 64-bit exte ...
CVE-2018-3968An exploitable vulnerability exists in the verified boot protection of ...

Search for package or bug name: Reporting problems