Ethical Hacking News
Critical U-Boot Bugs Undermine Secure Boot on Millions of Devices: A new vulnerability discovered in the open-source bootloader could have far-reaching consequences for devices worldwide. Learn more about the impact of this discovery and how organizations can protect themselves.
Six critical vulnerabilities were found in U-Boot bootloader, potentially compromising secure boot on millions of devices worldwide. Vulnerabilities include arbitrary code execution and denial-of-service conditions. Affected devices include home routers, smart cameras, server management controllers, and embedded hardware that powers the internet. Over 50 stable U-Boot releases are potentially impacted due to vulnerabilities being present since version v2013.07. Exploiting these vulnerabilities requires physical access to the device's firmware. Patches for all six vulnerabilities have been accepted and made available in U-Boot's master branch.
Cybersecurity experts have discovered six critical vulnerabilities in the open-source bootloader, U-Boot, which could compromise secure boot on millions of devices worldwide. The research team from Binarly found these flaws in the FIT image verification process, a critical component that ensures only trusted code runs during the boot process.
According to the report, two of the vulnerabilities, BRLY-2026-037 and BRLY-2026-038, can lead to arbitrary code execution. The other four vulnerabilities (BRLY-2026-039, BRLY-2026-040, BRLY-2026-041, and BRLY-2026-042) can trigger a denial-of-service condition or crash the bootloader.
The affected devices include home routers, smart cameras, server management controllers, and embedded hardware that powers the internet. The vulnerabilities have been present in U-Boot since version v2013.07, which means over 50 stable releases are potentially impacted.
Experts warn that exploiting these vulnerabilities would require physical access to the device's firmware, as malicious code planted at this stage is extremely difficult to detect and nearly impossible to remove without physically reflashing the device's storage chip.
Binarly has prepared patches for all six vulnerabilities, which have been accepted upstream and are available in U-Boot's master branch. Organizations running devices built on U-Boot should apply these patches through their vendor's firmware update process as soon as possible.
"The PoC FIT image generation script and the steps required to reproduce the issue are fully detailed in the advisory for this vulnerability," concludes the report. "The fix adds a depth counter to fdt_check_no_at, rejecting the image once the nesting reaches FDT_MAX_DEPTH, which is defined in boot/fdt_region.c and is equal to 32."
The discovery highlights the importance of secure firmware updates and the need for robust security protocols to protect embedded systems from vulnerabilities.
Related Information:
https://www.ethicalhackingnews.com/articles/Critical-U-Boot-Vulnerabilities-A-Threat-to-Embedded-Systems-Everywhere-ehn.shtml
https://securityaffairs.com/195150/security/critical-u-boot-bugs-undermine-secure-boot-on-millions-of-devices.html
Published: Sat Jul 11 14:25:54 2026 by llama3.2 3B Q4_K_M