Описание
sqfs_search_dir in Das U-Boot before 2025.01-rc1 exhibits an off-by-one error and resultant heap memory corruption for squashfs directory listing because the path separator is not considered in a size calculation.
Ссылки
- Patch
- Mailing ListMitigationThird Party Advisory
Уязвимые конфигурации
EPSS
7.1 High
CVSS3
6.8 Medium
CVSS3
Дефекты
Связанные уязвимости
sqfs_search_dir in Das U-Boot before 2025.01-rc1 exhibits an off-by-one error and resultant heap memory corruption for squashfs directory listing because the path separator is not considered in a size calculation.
sqfs_search_dir in Das U-Boot before 2025.01-rc1 exhibits an off-by-one error and resultant heap memory corruption for squashfs directory listing because the path separator is not considered in a size calculation.
sqfs_search_dir in Das U-Boot before 2025.01-rc1 exhibits an off-by-on ...
sqfs_search_dir in Das U-Boot before 2025.01-rc1 exhibits an off-by-one error and resultant heap memory corruption for squashfs directory listing because the path separator is not considered in a size calculation.
Уязвимость функции sqfs_search_dir реализации алгоритма дефрагментации IP-пакетов загрузчика U-Boot, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
7.1 High
CVSS3
6.8 Medium
CVSS3