CVE-2022-34835

Published: Jun 30, 2022Modified: May 12, 2026

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

In Das U-Boot through 2022.07-rc5, an integer signedness error and resultant stack-based buffer overflow in the "i2c md" command enables the corruption of the return address pointer of the do_i2c_md function.

Affected (6)

Products: Denx: U Boot

1 product

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Denx U Boot	Before 2022.07
Denx U Boot	Version 2022.07 rc1
Denx U Boot	Version 2022.07 rc2
Denx U Boot	Version 2022.07 rc3
Denx U Boot	Version 2022.07 rc4
Denx U Boot	Version 2022.07 rc5

Related CWEs

Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

References (8)

https://github.com/u-boot/u-boot/commit/8f8c04bf1ebbd2f72f1643e7ad9617dafa6e5409

Source: cve@mitre.org

ExploitPatchThird Party Advisory

https://lists.denx.de/pipermail/u-boot/2022-June/486113.html

Source: cve@mitre.org

ExploitPatchVendor Advisory

https://source.denx.de/u-boot/u-boot/-/commit/8f8c04bf1ebbd2f72f1643e7ad9617dafa6e5409

Source: cve@mitre.org

PatchVendor Advisory

https://github.com/u-boot/u-boot/commit/8f8c04bf1ebbd2f72f1643e7ad9617dafa6e5409

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchThird Party Advisory

https://lists.debian.org/debian-lts-announce/2025/05/msg00001.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.denx.de/pipermail/u-boot/2022-June/486113.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchVendor Advisory

https://source.denx.de/u-boot/u-boot/-/commit/8f8c04bf1ebbd2f72f1643e7ad9617dafa6e5409

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://cert-portal.siemens.com/productcert/html/ssa-577017.html

Source: 0b142b55-0307-4c5a-b3c9-f314f3fb7c5e

Timeline

No history available yet.