CVE-2026-34961 | barebox up to 2026.04.0 ext4 /fs/ext4/ext4_common.c eh_entries out-of-bounds

May 12, 2026 Yanac

A vulnerability has been found in barebox up to 2026.04.0 and classified as problematic. This issue affects some unknown processing of the file /fs/ext4/ext4_common.c of the component ext4 Handler. Performing a manipulation of the argument eh_entries results in out-of-bounds read.

This vulnerability was named CVE-2026-34961. The attack needs to be approached locally. There is no available exploit.

The affected component should be upgraded.VulDB Recent EntriesRead More