VYPR
Unrated severityNVD Advisory· Published Jun 7, 2020· Updated Aug 4, 2024

CVE-2020-13910

CVE-2020-13910

Description

Pengutronix Barebox through v2020.05.0 has an out-of-bounds read in nfs_read_reply in net/nfs.c because a field of an incoming network packet is directly used as a length field without any bounds check.

Affected products

2
  • Pengutronix/Bareboxdescription
  • Barebox/Bareboxllm-fuzzy
    Range: <=2020.05.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.