CVE-2024-57258
EUVD-2025-475718.02.2025, 23:15
Integer overflows in memory allocation in Das U-Boot before 2025.01-rc1 occur for a crafted squashfs filesystem via sbrk, via request2size, or because ptrdiff_t is mishandled on x86_64.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| denx | u-boot | 𝑥 ≤ 2024.10 |
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| Siemens | RUGGEDCOM ROX MX5000 | 𝑥 < V2.17.1 | ADP |
| Siemens | RUGGEDCOM ROX MX5000RE | 𝑥 < V2.17.1 | ADP |
| Siemens | RUGGEDCOM ROX RX1400 | 𝑥 < V2.17.1 | ADP |
| Siemens | RUGGEDCOM ROX RX1500 | 𝑥 < V2.17.1 | ADP |
| Siemens | RUGGEDCOM ROX RX1501 | 𝑥 < V2.17.1 | ADP |
| Siemens | RUGGEDCOM ROX RX1510 | 𝑥 < V2.17.1 | ADP |
| Siemens | RUGGEDCOM ROX RX1511 | 𝑥 < V2.17.1 | ADP |
| Siemens | RUGGEDCOM ROX RX1512 | 𝑥 < V2.17.1 | ADP |
| Siemens | RUGGEDCOM ROX RX1524 | 𝑥 < V2.17.1 | ADP |
| Siemens | RUGGEDCOM ROX RX1536 | 𝑥 < V2.17.1 | ADP |
| Siemens | RUGGEDCOM ROX RX5000 | 𝑥 < V2.17.1 | ADP |
Debian Releases
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| u-boot-rpiarm64 |
| ||||||||||||
| u-boot-rpiarm64-doc |
| ||||||||||||
| u-boot-tools |
|
References