[U-Boot] [PATCH v9 09/10] tftp: prevent overwriting reserved memory
Joe Hershberger
joe.hershberger at ni.com
Wed Jan 2 22:05:07 UTC 2019
On Wed, Dec 19, 2018 at 1:04 PM Simon Goldschmidt
<simon.k.r.goldschmidt at gmail.com> wrote:
>
> This fixes CVE-2018-18439 ("insufficient boundary checks in network
> image boot") by using lmb to check for a valid range to store
> received blocks.
>
> Signed-off-by: Simon Goldschmidt <simon.k.r.goldschmidt at gmail.com>
Acked-by: Joe Hershberger <joe.hershberger at ni.com>
More information about the U-Boot
mailing list