CVE-2021-27097
Summary
| CVE | CVE-2021-27097 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2021-02-17 23:15:00 UTC |
| Updated | 2021-02-23 23:43:00 UTC |
| Description | The boot loader in Das U-Boot before 2021.04-rc2 mishandles a modified FIT. |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Merge branch '2021-02-15-fix-CVE-2021-27097-CVE-2021-27138' · u-boot/u-boot@b6f4c75 · GitHub | MISC | github.com | Patch, Third Party Advisory |
| image: Add an option to do a full check of the FIT · u-boot/u-boot@6f3c2d8 · GitHub | MISC | github.com | Patch, Third Party Advisory |
| fdt_region: Check for a single root node of the correct name · u-boot/u-boot@8a7d4cf · GitHub | MISC | github.com | Patch, Third Party Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 184705 Debian Security Update for u-boot (CVE-2021-27097)
- 501786 Alpine Linux Security Update for u-boot
- 504478 Alpine Linux Security Update for u-boot
- 670500 EulerOS Security Update for uboot-tools (EulerOS-SA-2021-2258)
- 670526 EulerOS Security Update for uboot-tools (EulerOS-SA-2021-2284)
- 671497 EulerOS Security Update for uboot-tools (EulerOS-SA-2022-1517)
- 671513 EulerOS Security Update for uboot-tools (EulerOS-SA-2022-1498)