CVE-2026-34961
Received Received - Intake
Out-of-Bounds Read in barebox Bootloader via Malicious ext4 Image

Publication date: 2026-05-11

Last updated on: 2026-05-11

Assigner: VulnCheck

Description
barebox prior to version 2026.04.0 contains out-of-bounds read vulnerabilities in ext4 extent parsing due to missing validation of the eh_entries field against buffer capacity in fs/ext4/ext4_common.c. Attackers can supply a malicious ext4 filesystem image via USB, SD card, or network boot to trigger heap out-of-bounds reads during boot-time filesystem parsing, potentially redirecting reads to arbitrary disk offsets.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-11
Last Modified
2026-05-11
Generated
2026-06-21
AI Q&A
2026-05-12
EPSS Evaluated
2026-06-20
NVD
CVE-2026-34961
EUVD
EUVD-2026-29323
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
barebox barebox to 2026.04.0 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-125 The product reads data past the end, or before the beginning, of the intended buffer.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in barebox versions prior to 2026.04.0 and involves out-of-bounds read errors during ext4 filesystem extent parsing. Specifically, the vulnerability arises because the eh_entries field is not properly validated against the buffer capacity in the ext4_common.c file. An attacker can exploit this by providing a malicious ext4 filesystem image through USB, SD card, or network boot, causing the system to perform heap out-of-bounds reads during boot-time filesystem parsing.

Impact Analysis

The impact of this vulnerability is that an attacker can trigger heap out-of-bounds reads, potentially redirecting reads to arbitrary disk offsets. This can lead to unauthorized access to data or system instability during the boot process. The CVSS v3.1 score indicates a moderate severity with a base score of 6.2, highlighting that the vulnerability can cause high impact on availability but does not directly affect confidentiality or integrity.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-34961. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart