Vulnerabilities > CVE-2022-33103 - Out-of-bounds Write vulnerability in Denx U-Boot
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Das U-Boot from v2020.10 to v2022.07-rc3 was discovered to contain an out-of-bounds write via the function sqfs_readdir().
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 28 |
Common Weakness Enumeration (CWE)
References
- https://lore.kernel.org/all/20220609140206.297405-1-miquel.raynal%40bootlin.com/
- https://lore.kernel.org/all/20220609140206.297405-1-miquel.raynal%40bootlin.com/
- https://lore.kernel.org/all/CALO=DHFB+yBoXxVr5KcsK0iFdg+e7ywko4-e+72kjbcS8JBfPw%40mail.gmail.com/
- https://lore.kernel.org/all/CALO=DHFB+yBoXxVr5KcsK0iFdg+e7ywko4-e+72kjbcS8JBfPw%40mail.gmail.com/