Security update for u-boot
This update for u-boot fixes the following issues:
Security issues fixed:
- CVE-2019-13106: Fixed stack buffer overflow via a crafted ext4 filesystem that may lead to code execution (bsc#1144656).
- CVE-2019-13104: Fixed an underflow that could cause memcpy() to overwrite a very large amount of data via a crafted ext4 filesystem (bsc#1144675).
This update was imported from the SUSE:SLE-15-SP1:Update update project.
-
Submitted by
Matthias Brugger (mbrugger)
Fixed bugs
bnc#1144656
VUL-0: CVE-2019-13106: u-boot: stack buffer overflow via a crafted ext4 filesystem may lead to code execution
bnc#1144675
VUL-0: CVE-2019-13104: u-boot: an underflow can cause memcpy() to overwrite a very large amount of data via a crafted ext4 filesystem
