PT-2021-17257 · Unknown+2 · Das U-Boot+2

Arie Haenel

Published

2021-02-17

Updated

2025-10-01

CVE-2021-27138

CVSS v3.1

7.8

High

Vector

AC:L/AV:L/A:H/C:H/I:H/PR:N/S:U/UI:R

Name of the Vulnerable Software and Affected Versions: Das U-Boot versions prior to 2021.04-rc2

Description: The boot loader in Das U-Boot mishandles use of unit addresses in a FIT.

Recommendations: For versions prior to 2021.04-rc2, update to version 2021.04-rc2 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

ALT-PU-2021-1610

CVE-2021-27138

DLA-4320-1

OESA-2021-1130

Alt Linux

Das U-Boot

Debian