CVE-2020-8432

CVE-2020-8432

In Das U-Boot through 2020.01, a double free has been found in the cmd/gpt.c do_rename_gpt_parts() function. Double freeing may result in a write-what-where condition, allowing an attacker to execute arbitrary code. NOTE: this vulnerablity was introduced when attempting to fix a memory leak identified by static analysis.

Source: CVE-2020-8432

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다