CVE-2022-2347

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-2347

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-2347.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2022-2347

Related

Published

2022-09-23T13:15:10Z

Modified

2025-02-14T11:33:34.135046Z

Severity

7.1 (High) CVSS_V3 - CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

There exists an unchecked length field in UBoot. The U-Boot DFU implementation does not bound the length field in USB DFU download setup packets, and it does not verify that the transfer direction corresponds to the specified command. Consequently, if a physical attacker crafts a USB DFU download setup packet with a wLength greater than 4096 bytes, they can write beyond the heap-allocated request buffer.

References

Affected packages

Debian:11 / u-boot

Package

Name: u-boot
Purl: pkg:deb/debian/u-boot?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2021.*

2021.01+dfsg-5

2021.04~rc3+dfsg-1

2021.04~rc4+dfsg-1

2021.07~rc4+dfsg-1

2021.07+dfsg-1

2021.07+dfsg-2

2021.10~rc5+dfsg-1

2021.10+dfsg-1

2022.*

2022.01~rc2+dfsg-1

2022.01~rc4+dfsg-1

2022.01+dfsg-1

2022.01+dfsg-2

2022.04~rc2+dfsg-1

2022.04~rc4+dfsg-1

2022.04+dfsg-1

2022.04+dfsg-2

2022.07~rc3+dfsg-1

2022.07~rc3+dfsg-2

2022.07~rc4+dfsg-1

2022.07+dfsg-1

2022.10~rc2+dfsg-1

2022.10~rc2+dfsg-2

2022.10+dfsg-1

2022.10+dfsg-2

2023.*

2023.01~rc2+dfsg-1

2023.01~rc3+dfsg-1

2023.01~rc4+dfsg-1

2023.01~rc4+dfsg-2

2023.01+dfsg-1

2023.01+dfsg-2

2023.04~rc2+dfsg-1

2023.04~rc5+dfsg-1

2023.04+dfsg-1

2023.07~rc4+dfsg-1

2023.07~rc5+dfsg-1

2023.07+dfsg-1

2024.*

2024.01~rc6+dfsg-1

2024.01~rc6+dfsg-2

2024.01+dfsg-1

2024.01+dfsg-2

2024.01+dfsg-3

2024.01+dfsg-4

2024.01+dfsg-5

2024.01+dfsg-6

2024.01+dfsg-7

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / u-boot

Package

Name: u-boot
Purl: pkg:deb/debian/u-boot?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2023.01~rc4+dfsg-2

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / u-boot

Package

Name: u-boot
Purl: pkg:deb/debian/u-boot?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2023.01~rc4+dfsg-2

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Git / github.com/u-boot/u-boot

Affected ranges

Type: GIT
Repo: https://github.com/u-boot/u-boot
Events: Introduced

6528ff0109d81c1f21d20f9f1370782bccf87bcb

Last affected

e092e3250270a1016c877da7bdd9384f14b1321e

Affected versions

v2012.*

v2012.10

v2013.*

v2013.01

v2013.01-rc1

v2013.01-rc2

v2013.01-rc3

v2013.04

v2013.04-rc1

v2013.04-rc2

v2013.04-rc3

v2013.07

v2013.07-rc1

v2013.07-rc2

v2013.07-rc3

v2013.10

v2013.10-rc1

v2013.10-rc2

v2013.10-rc3

v2013.10-rc4

v2014.*

v2014.01

v2014.01-rc1

v2014.01-rc2

v2014.01-rc3

v2014.04

v2014.04-rc1

v2014.04-rc2

v2014.04-rc3

v2014.07

v2014.07-rc1

v2014.07-rc2

v2014.07-rc3

v2014.07-rc4

v2014.10

v2014.10-rc1

v2014.10-rc2

v2014.10-rc3

v2015.*

v2015.01

v2015.01-rc1

v2015.01-rc2

v2015.01-rc3

v2015.01-rc4

v2015.04

v2015.04-rc1

v2015.04-rc2

v2015.04-rc3

v2015.04-rc4

v2015.04-rc5

v2015.07

v2015.07-rc1

v2015.07-rc2

v2015.07-rc3

v2015.10

v2015.10-rc1

v2015.10-rc2

v2015.10-rc3

v2015.10-rc4

v2015.10-rc5

v2016.*

v2016.01

v2016.01-rc1

v2016.01-rc2

v2016.01-rc3

v2016.01-rc4

v2016.03

v2016.03-rc1

v2016.03-rc2

v2016.03-rc3

v2016.05

v2016.05-rc1

v2016.05-rc2

v2016.05-rc3

v2016.07

v2016.07-rc1

v2016.07-rc2

v2016.07-rc3

v2016.09

v2016.09-rc1

v2016.09-rc2

v2016.11

v2016.11-rc1

v2016.11-rc2

v2016.11-rc3

v2017.*

v2017.01

v2017.01-rc1

v2017.01-rc2

v2017.01-rc3

v2017.03

v2017.03-rc1

v2017.03-rc2

v2017.03-rc3

v2017.05

v2017.05-rc1

v2017.05-rc2

v2017.05-rc3

v2017.07

v2017.07-rc1

v2017.07-rc2

v2017.07-rc3

v2017.09

v2017.09-rc1

v2017.09-rc2

v2017.09-rc3

v2017.09-rc4

v2017.11

v2017.11-rc1

v2017.11-rc2

v2017.11-rc3

v2017.11-rc4

v2018.*

v2018.01

v2018.01-rc1

v2018.01-rc2

v2018.01-rc3

v2018.03

v2018.03-rc1

v2018.03-rc2

v2018.03-rc3

v2018.03-rc4

v2018.05

v2018.05-rc1

v2018.05-rc2

v2018.05-rc3

v2018.07

v2018.07-rc1

v2018.07-rc2

v2018.07-rc3

v2018.09

v2018.09-rc1

v2018.09-rc2

v2018.09-rc3

v2018.11

v2018.11-rc1

v2018.11-rc2

v2018.11-rc3

v2019.*

v2019.01

v2019.01-rc1

v2019.01-rc2

v2019.01-rc3

v2019.04

v2019.04-rc1

v2019.04-rc2

v2019.04-rc3

v2019.04-rc4

v2019.07

v2019.07-rc1

v2019.07-rc2

v2019.07-rc3

v2019.07-rc4

v2019.10

v2019.10-rc1

v2019.10-rc2

v2019.10-rc3

v2019.10-rc4

v2020.*

v2020.01

v2020.01-rc1

v2020.01-rc2

v2020.01-rc3

v2020.01-rc4

v2020.01-rc5

v2020.04

v2020.04-rc1

v2020.04-rc2

v2020.04-rc3

v2020.04-rc4

v2020.04-rc5

v2020.07

v2020.07-rc1

v2020.07-rc2

v2020.07-rc3

v2020.07-rc4

v2020.07-rc5

v2020.10

v2020.10-rc1

v2020.10-rc2

v2020.10-rc3

v2020.10-rc4

v2020.10-rc5

v2021.*

v2021.01

v2021.01-rc1

v2021.01-rc2

v2021.01-rc3

v2021.01-rc4

v2021.01-rc5

v2021.04

v2021.04-rc1

v2021.04-rc2

v2021.04-rc3

v2021.04-rc4

v2021.04-rc5

v2021.07

v2021.07-rc1

v2021.07-rc2

v2021.07-rc3

v2021.07-rc4

v2021.07-rc5

v2021.10

v2021.10-rc1

v2021.10-rc2

v2021.10-rc3

v2021.10-rc4

v2021.10-rc5

v2022.*

v2022.01

v2022.01-rc1

v2022.01-rc2

v2022.01-rc3

v2022.01-rc4

v2022.04

v2022.04-rc1

v2022.04-rc2

v2022.04-rc3

v2022.04-rc4

v2022.04-rc5

v2022.07

v2022.07-rc1

v2022.07-rc2

v2022.07-rc3

v2022.07-rc4

v2022.07-rc5

v2022.07-rc6