[Bug 2046462] Re: mkimage "hardening" patch is broken
Launchpad Bug Tracker
2046462 at bugs.launchpad.net
Wed Oct 1 16:40:21 UTC 2025
This bug was fixed in the package u-boot - 2025.01-3ubuntu4
---------------
u-boot (2025.01-3ubuntu4) questing; urgency=medium
[ Ravi Kant Sharma ]
* d/targets.mk: Remove MIPS builds to fix FTBFS in questing (LP: #2125628)
u-boot (2025.01-3ubuntu3) questing; urgency=medium
* d/p/ubuntu-hardening-limit-keynames-to-keydir.patch: Fix NULL dereference
in lib/rsa/rsa-sign.c when calling mkimage with -G (LP: #2046462)
-- Dave Jones <dave.jones at canonical.com> Tue, 30 Sep 2025 11:18:03
+0100
** Changed in: u-boot (Ubuntu)
Status: New => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to u-boot in Ubuntu.
https://bugs.launchpad.net/bugs/2046462
Title:
mkimage "hardening" patch is broken
Status in u-boot package in Ubuntu:
Fix Released
Bug description:
The ubuntu-hardening-limit-keynames-to-keydir.patch breaks 'mkimage
-G'. Since that option was introduced upstream (commits 36bfcb62b3e
and 824ee745fb, v2021.07), the "name" argument in
rsa_pem_get_priv_key() may be NULL, but said patch unconditionally
passes it to strchr().
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/u-boot/+bug/2046462/+subscriptions
More information about the foundations-bugs
mailing list