Skip to main content
Early Access
— Mondoo Vulnerability Intelligence is currently in preview.
Vulnerability Intelligence
Login
Get Demo
SUSE-SU-2022:2058-1 | Mondoo Vulnerability Intelligence
Back to search
SUSE-SU-2022:2058-1
UNKNOWN
Security update for u-boot
Published Jun 13, 2022
Modified 3 years ago
Fix available
Details
This update for u-boot fixes the following issues:
A large buffer overflow could have lead to a denial of service in the IP Packet deframentation code. (CVE-2022-30552, bsc#1200363)
A Hole Descriptor Overwrite could have lead to an arbitrary out of bounds write primitive. (CVE-2022-30790, bsc#1200364)
Affected Packages
SUSE:Linux Enterprise Server 12 SP3-LTSS
u-boot
Fixed in:
2016.07-12.6.1
SUSE:Linux Enterprise Server 12 SP3-LTSS
u-boot-rpi3
Fixed in:
2016.07-12.6.1
SUSE:Linux Enterprise Server 12 SP3-LTSS
u-boot-tools
Fixed in:
2016.07-12.6.1
References
REPORT
https://bugzilla.suse.com/1200363
REPORT
https://bugzilla.suse.com/1200364
WEB
https://www.suse.com/security/cve/CVE-2022-30552
WEB
https://www.suse.com/security/cve/CVE-2022-30790
ADVISORY
https://www.suse.com/support/update/announcement/2022/suse-su-20222058-1/
Upstream
CVE-2022-30552
CVE-2022-30790
Related
CVE-2022-30552
CVE-2022-30790
Ecosystems
SUSE Linux Enterprise Server 12 SP3-LTSS
Timeline
Published
Jun 13, 2022
Modified
Jun 13, 2022