Closed jynik closed 2 years ago
Details available here:
https://research.nccgroup.com/2022/06/03/technical-advisory-multiple-vulnerabilities-in-u-boot-cve-2022-30790-cve-2022-30552/
Both appear relevant if u-boot/net/net.c includes __net_defragment() via CONFIG_IP_DEFRAG=y.
u-boot/net/net.c
__net_defragment()
CONFIG_IP_DEFRAG=y
The patch for these appear to be in U-Boot commit b85d130ea0cac152c21ec38ac9417b31d41b5552. (I have not reviewed it.)
I'm anticipating the check will apply for version < 2022.07, as the above is already in the master branch.
If someone wants to track down when this net.c code was introduced, I'm happy to include a lower bound in the applicable version check.
Details available here:
https://research.nccgroup.com/2022/06/03/technical-advisory-multiple-vulnerabilities-in-u-boot-cve-2022-30790-cve-2022-30552/
Both appear relevant if
u-boot/net/net.cincludes__net_defragment()viaCONFIG_IP_DEFRAG=y.The patch for these appear to be in U-Boot commit b85d130ea0cac152c21ec38ac9417b31d41b5552. (I have not reviewed it.)
I'm anticipating the check will apply for version < 2022.07, as the above is already in the master branch.
If someone wants to track down when this net.c code was introduced, I'm happy to include a lower bound in the applicable version check.