Home > Cyber News > U-boot Loader Contains Unpatched Critical Flaws (CVE-2022-30790)
CYBER NEWS

U-boot Loader Contains Unpatched Critical Flaws (CVE-2022-30790)

by   |  Last Update:  |  0 Comments  

U-boot Loader Contains Unpatched Critical Flaws (CVE-2022-30790)

Two security vulnerabilities, CVE-2022-30790 and CVE-2022-30552, were discovered in U-boot, a popular boot loader for embedded systems.

The loader has many implementations for various architectures, and is present in most Linux-based embedded systems, including ChromeOS and Android. The two vulnerabilities reside in the IP Defragmentation algorithm.

It should be noted that the development of u-boot is “closely related to Linux”. According to the project’s GitHub page, some parts of its source code originate in the Linux source code tree, with some header files in common.




CVE-2022-30790 and CVE-2022-30552

The vulnerabilities could be leveraged in arbitrary out-of-bounds write attacks, as well as denial-of-service attack scenarios:

  • Technical Advisory – Hole Descriptor Overwrite in U-Boot IP Packet Defragmentation Leads to Arbitrary Out of Bounds Write Primitive (CVE-2022-30790);
  • Technical Advisory – Large buffer overflow leads to DoS in U-Boot IP Packet Defragmentation Code (CVE-2022-30552).

CVE-2022-30790 affects the U-Boot implementation of RFC815 IP DATAGRAM REASSEMBLY ALGORITHMS, which is susceptible to a Hole Descriptor overwrite attack which ultimately leads to an arbitrary write primitive.

CVE-2022-30552 could lead to a buffer overflow through a specially crafted fragmented IP Datagram with an invalid total length which causes a denial of service.

Both issues can be exploited only from the local network, which could then allow attackers to root the devices and perform a DoS attack via a malformed packet. Fixes will be made available soon, and users should update to the latest version as soon as possible. More information is available in the official advisory.

Milena Dimitrova

An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim

More Posts

Follow Me:
Twitter

Related posts:
  1. Top 15 Linux Security Questions You Didn’t Know You Had Beginner Linux administrators and users should know that even though...
  2. Adobe Patches 112 Vulnerabilities in Latest Patch Package (CVE-2018-5007) Adobe has released the latest patch package that addresses a...
  3. The Best Linux Server Distributions in 2017 Gnu/Linux is one of the leading server operating systems due...
  4. Top Security and Privacy Linux Distributions in 2019 There are many specialist Linux distributions that are designed with...
  5. The 10 Best Methods on How to Improve Linux Security This blog post is created in order to help you...
  6. Which is the Most Secure Browser for 2015 – Firefox, Chrome, Internet Explorer, Safari A Web browser can be two things. A person who...
  7. Flaws in Broadcom WiFi Chips Expose Smartphones, IoT Devices It’s a fact that we’re facing new vulnerabilities daily. Today’s...
  8. CVE-2020-8597: Critical PPP Daemon Flaw Affects Most Linux Distros A 17-year-old remote code execution bug that impacts the PPP...

Leave a Comment

Your email address will not be published. Required fields are marked *

This website uses cookies to improve user experience. By using our website you consent to all cookies in accordance with our Privacy Policy.
I Agree