rpm package
suse/u-boot-rpi3&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP5
pkg:rpm/suse/u-boot-rpi3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5
Vulnerabilities (22)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-11059 | — | < 2019.01-5.3.1 | 2019.01-5.3.1 | May 10, 2019 | Das U-Boot 2016.11-rc1 through 2019.04 mishandles the ext4 64-bit extension, resulting in a buffer overflow. | ||
| CVE-2019-11690 | — | < 2019.01-5.3.1 | 2019.01-5.3.1 | May 3, 2019 | gen_rand_uuid in lib/uuid.c in Das U-Boot v2014.04 through v2019.04 lacks an srand call, which allows attackers to determine UUID values in scenarios where CONFIG_RANDOM_UUID is enabled, and Das U-Boot is relied upon for UUID values of a GUID Partition Table of a boot device. |
- CVE-2019-11059May 10, 2019affected < 2019.01-5.3.1fixed 2019.01-5.3.1
Das U-Boot 2016.11-rc1 through 2019.04 mishandles the ext4 64-bit extension, resulting in a buffer overflow.
- CVE-2019-11690May 3, 2019affected < 2019.01-5.3.1fixed 2019.01-5.3.1
gen_rand_uuid in lib/uuid.c in Das U-Boot v2014.04 through v2019.04 lacks an srand call, which allows attackers to determine UUID values in scenarios where CONFIG_RANDOM_UUID is enabled, and Das U-Boot is relied upon for UUID values of a GUID Partition Table of a boot device.
Page 2 of 2