9 matches found
OESA-2025-1213 uboot-tools security update
This package includes the mkimage program, which allows generation of U-Boot images in various formats, and the fwprintenv and fwsetenv programs to read and modify U-Boot's environment. Security Fixes: An integer overflow in sqfsinodesize in Das U-Boot before 2025.01-rc1 occurs in the symlink siz...
CVE-2024-57259
A flaw was found in Das U-Boot. This vulnerability allows heap memory corruption leading to denial of service or arbitrary code execution via improper size calculation that fails to account for the path separator during SquashFS directory listing. Mitigation Mitigation for this issue is either no...
CVE-2024-57259
creationtimestamp| type| source ---|---|--- 2025-02-18 23:16:36+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3liifelat4l2y 2025-02-19 01:11:08+00:00| seen| https://t.me/cvedetector/18391 2025-02-19 02:11:35+00:00| seen|...
CVE-2024-57259
sqfssearchdir in Das U-Boot before 2025.01-rc1 exhibits an off-by-one error and resultant heap memory corruption for squashfs directory listing because the path separator is not considered in a size calculation...
UBUNTU-CVE-2024-57259
sqfssearchdir in Das U-Boot before 2025.01-rc1 exhibits an off-by-one error and resultant heap memory corruption for squashfs directory listing because the path separator is not considered in a size calculation...
CVE-2024-57259
sqfssearchdir in Das U-Boot before 2025.01-rc1 exhibits an off-by-one error and resultant heap memory corruption for squashfs directory listing because the path separator is not considered in a size calculation...
CVE-2024-57259
sqfssearchdir in Das U-Boot before 2025.01-rc1 exhibits an off-by-one error and resultant heap memory corruption for squashfs directory listing because the path separator is not considered in a size calculation...
CVE-2024-57259
CVE-2024-57259 affects Das U-Boot up to 2025.01-rc1. The issue is an off-by-one error in sqfs_search_dir that causes heap memory corruption during squashfs directory listings because the path separator is not counted in a size calculation. Impact is described as high (confidentiality, integrity, ...
CVE-2024-57259
sqfssearchdir in Das U-Boot before 2025.01-rc1 exhibits an off-by-one error and resultant heap memory corruption for squashfs directory listing because the path separator is not considered in a size calculation...