U-boot Security Vulnerabilities and Issues — U-boot CVE List

Lucene search

DenxU-boot

6 matches found

CVE•added 2025/02/18 11:15 p.m.•55 views

CVE-2024-57258

Integer overflows in memory allocation in Das U-Boot before 2025.01-rc1 occur for a crafted squashfs filesystem via sbrk, via request2size, or because ptrdiff_t is mishandled on x86_64.

7.1CVSS7AI score0.00039EPSS

CVE•added 2025/02/18 11:15 p.m.•54 views

CVE-2024-57256

An integer overflow in ext4fs_read_symlink in Das U-Boot before 2025.01-rc1 occurs for zalloc (adding one to an le32 variable) via a crafted ext4 filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite.

7.1CVSS7.2AI score0.00024EPSS

CVE•added 2025/02/18 11:15 p.m.•48 views

CVE-2024-57255

An integer overflow in sqfs_resolve_symlink in Das U-Boot before 2025.01-rc1 occurs via a crafted squashfs filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite.

7.1CVSS7.2AI score0.00024EPSS

CVE•added 2025/02/18 11:15 p.m.•48 views

CVE-2024-57257

A stack consumption issue in sqfs_size in Das U-Boot before 2025.01-rc1 occurs via a crafted squashfs filesystem with deep symlink nesting.

2CVSS6.9AI score0.00014EPSS

CVE•added 2025/02/18 11:15 p.m.•46 views

CVE-2024-57254

An integer overflow in sqfs_inode_size in Das U-Boot before 2025.01-rc1 occurs in the symlink size calculation via a crafted squashfs filesystem.

7.1CVSS7.2AI score0.00024EPSS

CVE•added 2025/02/18 11:15 p.m.•45 views

CVE-2024-57259

sqfs_search_dir in Das U-Boot before 2025.01-rc1 exhibits an off-by-one error and resultant heap memory corruption for squashfs directory listing because the path separator is not considered in a size calculation.

7.1CVSS7.2AI score0.00027EPSS