Overview

File _patchinfo of Package patchinfo.12340

<patchinfo incident="12340">
  <issue tracker="bnc" id="1144656">VUL-0: CVE-2019-13106: u-boot: stack buffer overflow via a crafted  ext4 filesystem may lead to code execution</issue>
  <issue tracker="bnc" id="1144675">VUL-0: CVE-2019-13104: u-boot: an underflow can cause memcpy() to overwrite a very large amount of data via a crafted ext4 filesystem</issue>
  <issue tracker="cve" id="2019-13104"/>
  <issue tracker="cve" id="2019-13106"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>mbrugger</packager>
  <description>This update for u-boot fixes the following issues:

Security issues fixed:

- CVE-2019-13106: Fixed stack buffer overflow via a crafted ext4 filesystem that may lead to code execution (bsc#1144656).
- CVE-2019-13104: Fixed an underflow that could cause memcpy() to overwrite a very large amount of data via a crafted ext4 filesystem (bsc#1144675).
</description>
  <summary>Security update for u-boot</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places