embedded systems security

Das U‑Boot ships with a dangerous surprise in its NFS reply handling: a stack‑based buffer overflow in the nfs_mount_reply helper (tracked as CVE‑2019‑14203) that affects U‑Boot releases up through and including 2019.07 and — in certain configurations — permits remote attackers controlling a...