CVE-2026-34963

Name of the Vulnerable Software and Affected Versions barebox versions prior to 2026.04.0

Description Multiple memory-safety issues exist in the EFI PE loader within the efi/loader/pe.c file. An integer overflow occurs during virtual image size computation when using 32-bit arithmetic on section VirtualAddress and size values, leading to undersized heap allocation. Additionally, the PE section loading logic does not validate if PointerToRawData plus the copied size stays within the PE file buffer. An attacker can provide a malicious EFI PE binary through TFTP, USB, SD card, or network boot to trigger a heap buffer overflow or an out-of-bounds read from heap memory, which could allow code execution in the bootloader context.

Recommendations Update to version 2026.04.0.