Unrated severityNVD Advisory· Published Jun 7, 2020· Updated Aug 4, 2024
CVE-2020-13910
CVE-2020-13910
Description
Pengutronix Barebox through v2020.05.0 has an out-of-bounds read in nfs_read_reply in net/nfs.c because a field of an incoming network packet is directly used as a length field without any bounds check.
Affected products
2- Pengutronix/Bareboxdescription
Patches
Vulnerability mechanics
References
1- git.pengutronix.de/cgit/barebox/commit/net/nfs.cmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.