File _patchinfo of Package patchinfo.16976

<patchinfo incident="16976">
  <issue tracker="cve" id="2020-8432"/>
  <issue tracker="cve" id="2020-10648"/>
  <issue tracker="bnc" id="1162198">VUL-0: CVE-2020-8432: u-boot: double free in the cmd/gpt.c do_rename_gpt_parts() function, allowing an attacker to execute arbitrary code</issue>
  <issue tracker="bnc" id="1167209">VUL-0: CVE-2020-10648: u-boot: verified boot improper signature verification</issue>
  <packager>mbrugger</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for u-boot</summary>
  <description>This update for u-boot fixes the following issues:

- CVE-2020-8432: Fixed a double free in the cmd/gpt.c do_rename_gpt_parts() function, which allowed an attacker to execute arbitrary code (bsc#1162198) 
- CVE-2020-10648: Fixed improper signature verification during verified boot (bsc#1167209).
</description>
</patchinfo>