VDB

CESS-2024-57258

CESS-2024-57258 PUBLISHED CVSS 7.8 HIGH

Integer overflows in memory allocation in Das U-Boot before 2025.01-rc1 occur for a crafted squashfs filesystem via sbrk, via request2size, or because ptrdiff_t is mishandled on x86_64.

Risk Scores

CVSS 3.1
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Timeline

  • Feb 18, 2025 CVE Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›