Lucene search
JpcertCVELIST:CVE-2022-33967HistoryJul 20, 2022 - 6:15 a.m.
CVE-2022-33967
2022-07-2006:15:22
jpcert
www.cve.org
squashfs filesystem implementation of U-Boot versions from v2020.10-rc2 to v2022.07-rc5 contains a heap-based buffer overflow vulnerability due to a defect in the metadata reading process. Loading a specially crafted squashfs image may lead to a denial-of-service (DoS) condition or arbitrary code execution.
CNA Affected
[
{
"product": "U-Boot",
"vendor": "DENX Software Engineering",
"versions": [
{
"status": "affected",
"version": "versions from v2020.10-rc2 to v2022.07-rc5"
}
]
}
]Related
ubuntucve
ubuntucve
CVE-2022-33967
2022-07-20 00:00:00
alpinelinux
alpinelinux
CVE-2022-33967
2022-07-20 07:15:08
osv
osv
CVE-2022-33967
2022-07-20 07:15:08
u-boot vulnerabilities
2022-12-06 12:54:01
nvd
nvd
CVE-2022-33967
2022-07-20 07:15:08
debiancve
debiancve
CVE-2022-33967
2022-07-20 07:15:08
prion
prion
Heap overflow
2022-07-20 07:15:00
cve
cve
CVE-2022-33967
2022-07-20 07:15:08
suse
suse
Security update for u-boot (important)
2022-08-03 00:00:00
Security update for u-boot (important)
2022-08-03 00:00:00
nessus
nessus
SUSE SLED15 / SLES15 Security Update : u-boot (SUSE-SU-2022:2661-1)
2022-08-04 00:00:00
SUSE SLED15 / SLES15 Security Update : u-boot (SUSE-SU-2022:2653-1)
2022-08-04 00:00:00
openvas
openvas
openSUSE: Security Advisory for u-boot (SUSE-SU-2022:2653-1)
2022-08-04 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:2653-1)
2022-08-04 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:2661-1)
2022-08-04 00:00:00
ubuntu
ubuntu
U-Boot vulnerabilities
2022-12-06 00:00:00