CVE-2019-15937

CVE-2019-15937

EPSS 2.1%

Pengutronix barebox through 2019.08.1 has a remote buffer overflow in nfs_readlink_reply in net/nfs.c because a length field is directly used for a memcpy.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://git.pengutronix.de/cgit/barebox/commit/net/nfs.c?h=next&id=84986ca024462058574432b5483f4bf9136c538d