Lucene search
+L

7 matches found

osv
osv
added 2025/02/28 3:33 p.m.5 views

OESA-2025-1213 uboot-tools security update

This package includes the mkimage program, which allows generation of U-Boot images in various formats, and the fwprintenv and fwsetenv programs to read and modify U-Boot's environment. Security Fixes: An integer overflow in sqfsinodesize in Das U-Boot before 2025.01-rc1 occurs in the symlink siz...

7.8CVSS7.3AI score0.00365EPSS
Exploits0References7
circl
circl
added 2025/02/18 11:16 p.m.9 views

CVE-2024-57255

creationtimestamp| type| source ---|---|--- 2025-02-18 23:16:27+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3liifebi6ir27 2025-02-19 01:11:06+00:00| seen| https://t.me/cvedetector/18388 2025-02-19 02:11:35+00:00| seen|...

7.1CVSS8AI score0.00359EPSS
Exploits0References3
cve
cve
added 2025/02/18 12:0 a.m.71 views

CVE-2024-57255

CVE-2024-57255 concerns Das U-Boot up to 2025.01-rc1, where an integer overflow in sqfs_resolve_symlink is triggered by a crafted squashfs with inode size 0xffffffff, causing a zero malloc and a memory overwrite. The linked sources confirm the affected component and root cause; remediation is a p...

7.1CVSS7.2AI score0.00359EPSS
Exploits0References3Affected Software1
vulnrichment
vulnrichment
added 2025/02/18 12:0 a.m.7 views

CVE-2024-57255

An integer overflow in sqfsresolvesymlink in Das U-Boot before 2025.01-rc1 occurs via a crafted squashfs filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite...

7.1CVSS7.2AI score0.00359EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2025/02/18 12:0 a.m.4 views

CVE-2024-57255

An integer overflow in sqfsresolvesymlink in Das U-Boot before 2025.01-rc1 occurs via a crafted squashfs filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite...

7.1CVSS7.2AI score0.00359EPSS
Exploits0References3
debiancve
debiancve
added 2025/02/18 12:0 a.m.10 views

CVE-2024-57255

An integer overflow in sqfsresolvesymlink in Das U-Boot before 2025.01-rc1 occurs via a crafted squashfs filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite...

7.1CVSS7.9AI score0.00359EPSS
Exploits0
osv
osv
added 2025/02/18 12:0 a.m.6 views

CVE-2024-57255

An integer overflow in sqfsresolvesymlink in Das U-Boot before 2025.01-rc1 occurs via a crafted squashfs filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite...

7.1CVSS6.9AI score0.00359EPSS
Exploits0References5
Rows per page
Query Builder