CVE-2019-14194

Priority
Description
An issue was discovered in Das U-Boot through 2019.07. There is an
unbounded memcpy with a failed length check at nfs_read_reply when calling
store_block in the NFSv2 case.
Notes
Package
Upstream:released (2020.01+dfsg-1)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):needed
Ubuntu 20.04 LTS (Focal Fossa):needed
Ubuntu 20.10 (Groovy Gorilla):not-affected (2020.04+dfsg-2ubuntu1)
Patches:
Upstream:https://gitlab.denx.de/u-boot/u-boot/commit/aa207cf3a6d68f39d64cd29057a4fb63943e9078
More Information

Updated: 2020-09-29 18:22:17 UTC (commit 4ef060a5e1b87739b14601e0382b934fa18e8f65)