Уязвимость CVE-2024-57255

CVE-2024-57255

CVSS3: 7.1

ubuntu

9 месяцев назад

An integer overflow in sqfs_resolve_symlink in Das U-Boot before 2025.01-rc1 occurs via a crafted squashfs filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite.

CVE-2024-57255

CVSS3: 7.1

nvd

9 месяцев назад

An integer overflow in sqfs_resolve_symlink in Das U-Boot before 2025.01-rc1 occurs via a crafted squashfs filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite.

CVE-2024-57255

CVSS3: 7.1

debian

9 месяцев назад

An integer overflow in sqfs_resolve_symlink in Das U-Boot before 2025. ...

GHSA-5cmq-wrwp-9x26

CVSS3: 7.1

github

9 месяцев назад

An integer overflow in sqfs_resolve_symlink in Das U-Boot before 2025.01-rc1 occurs via a crafted squashfs filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite.

BDU:2025-02557

CVSS3: 7.1

fstec

9 месяцев назад

Уязвимость функции sqfs_resolve_symlink загрузчика U-Boot, позволяющая нарушителю оказать влияние на конфиденциальность, целостность и доступность защищаемой информации

exploitDog

CVE-2024-57255

Описание

Связанные уязвимости