|
222721
|
9.8 |
CRITICAL
Network
|
denx
|
u-boot
|
An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: rpc_lookup_reply.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-14200
|
2024-11-21 13:26 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222722
|
9.8 |
CRITICAL
Network
|
denx
|
u-boot
|
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an *udp_packet_handler call.
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2019-14199
|
2024-11-21 13:26 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222723
|
9.8 |
CRITICAL
Network
|
denx
|
u-boot
|
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv3 case.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-14198
|
2024-11-21 13:26 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222724
|
9.1 |
CRITICAL
Network
|
denx
|
u-boot
|
An issue was discovered in Das U-Boot through 2019.07. There is a read of out-of-bounds data at nfs_read_reply.
|
CWE-125
Out-of-bounds Read
|
CVE-2019-14197
|
2024-11-21 13:26 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222725
|
9.8 |
CRITICAL
Network
|
denx
|
u-boot
|
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_lookup_reply.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-14196
|
2024-11-21 13:26 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222726
|
9.8 |
CRITICAL
Network
|
denx
|
u-boot
|
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with unvalidated length at nfs_readlink_reply in the "else" block after calculating the new path length.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-14195
|
2024-11-21 13:26 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222727
|
9.8 |
CRITICAL
Network
|
denx
|
u-boot
|
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv2 case.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-14194
|
2024-11-21 13:26 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222728
|
9.8 |
CRITICAL
Network
|
denx
|
u-boot
|
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with an unvalidated length at nfs_readlink_reply, in the "if" block after calculating the new path length.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-14193
|
2024-11-21 13:26 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222729
|
9.8 |
CRITICAL
Network
|
denx
|
u-boot
|
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an nc_input_packet call.
|
CWE-787
CWE-191
Out-of-bounds Write
Integer Underflow (Wrap or Wraparound)
|
CVE-2019-14192
|
2024-11-21 13:26 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222730
|
7.5 |
HIGH
Network
|
sigil-ebook
flightcrew_project
canonical
|
sigil
flightcrew
ubuntu_linux
|
Sigil before 0.9.16 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ (dot dot slash) in a ZIP archive entry that is mishandled during extraction.
|
CWE-22
Path Traversal
|
CVE-2019-14452
|
2024-11-21 13:26 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
