|
222681
|
9.8 |
CRITICAL
Network
|
denx
|
u-boot
|
An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: rpc_lookup_reply.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-14200
|
2024-11-21 13:26 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222682
|
9.8 |
CRITICAL
Network
|
denx
|
u-boot
|
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an *udp_packet_handler call.
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2019-14199
|
2024-11-21 13:26 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222683
|
9.8 |
CRITICAL
Network
|
denx
|
u-boot
|
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv3 case.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-14198
|
2024-11-21 13:26 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222684
|
9.1 |
CRITICAL
Network
|
denx
|
u-boot
|
An issue was discovered in Das U-Boot through 2019.07. There is a read of out-of-bounds data at nfs_read_reply.
|
CWE-125
Out-of-bounds Read
|
CVE-2019-14197
|
2024-11-21 13:26 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222685
|
9.8 |
CRITICAL
Network
|
denx
|
u-boot
|
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_lookup_reply.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-14196
|
2024-11-21 13:26 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222686
|
9.8 |
CRITICAL
Network
|
denx
|
u-boot
|
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with unvalidated length at nfs_readlink_reply in the "else" block after calculating the new path length.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-14195
|
2024-11-21 13:26 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222687
|
9.8 |
CRITICAL
Network
|
denx
|
u-boot
|
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv2 case.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-14194
|
2024-11-21 13:26 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222688
|
9.8 |
CRITICAL
Network
|
denx
|
u-boot
|
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with an unvalidated length at nfs_readlink_reply, in the "if" block after calculating the new path length.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-14193
|
2024-11-21 13:26 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222689
|
9.8 |
CRITICAL
Network
|
denx
|
u-boot
|
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an nc_input_packet call.
|
CWE-787
CWE-191
Out-of-bounds Write
Integer Underflow (Wrap or Wraparound)
|
CVE-2019-14192
|
2024-11-21 13:26 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222690
|
7.5 |
HIGH
Network
|
sigil-ebook
flightcrew_project
canonical
|
sigil
flightcrew
ubuntu_linux
|
Sigil before 0.9.16 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ (dot dot slash) in a ZIP archive entry that is mishandled during extraction.
|
CWE-22
Path Traversal
|
CVE-2019-14452
|
2024-11-21 13:26 |
2019-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
