The Hacker News
By Ravie Lakshmanan — June 6th 2022 at 14:04
Cybersecurity researchers have disclosed two unpatched security vulnerabilities in the open-source U-Boot boot loader.
The issues, which were uncovered in the IP defragmentation algorithm implemented in U-Boot by NCC Group, could be abused to achieve arbitrary out-of-bounds write and denial-of-service (DoS).
U-Boot is a boot loader used in Linux-based embedded systems such as ChromeOS as well as