Security Advisory

CVE-2024-57256

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-02-18 00:00:00

Last updated 2026-05-12 12:01:26

Assigner mitre

State PUBLISHED

Description

An integer overflow in ext4fs_read_symlink in Das U-Boot before 2025.01-rc1 occurs for zalloc (adding one to an le32 variable) via a crafted ext4 filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite.

← Browse all CVEs View on cve.org ↗