CVE-2024-57256Integer Overflow or Wraparound in U-boot

CWE-190Integer Overflow or Wraparound9 documents6 sources
Severity
7.1HIGHNVD
NVD6.8OSV8.1OSV6.8
EPSS
0.1%
top 80.94%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Pengutronix BareboxDenx U-bootDebian U-boot+2 more
Timeline
PublishedFeb 18
Latest updateFeb 23

Description

An integer overflow in ext4fs_read_symlink in Das U-Boot before 2025.01-rc1 occurs for zalloc (adding one to an le32 variable) via a crafted ext4 filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite.

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 0.9 | Impact: 5.9

Affected Packages7 packages

debiandebian/u-boot< u-boot 2023.01+dfsg-2+deb12u2 (bookworm)
Debiandenx/u-boot< 2021.01+dfsg-5+deb11u1+3
Ubuntudenx/u-boot< 2022.01+dfsg-2ubuntu2.7+1
NVDdenx/u-boot2024.10
CVEListV5pengutronix/barebox< 2025.01.0

Patches

Patch: source.denx.de

🔴Vulnerability Details

4
OSV
u-boot vulnerabilities2026-02-23
GHSA
GHSA-5v3r-5x6q-8vmg: In barebox before 20252025-02-19
GHSA
GHSA-vmjq-93g5-fvqc: An integer overflow in ext4fs_read_symlink in Das U-Boot before 20252025-02-19
OSV
CVE-2024-57256: An integer overflow in ext4fs_read_symlink in Das U-Boot before 20252025-02-18

📋Vendor Advisories

3
Ubuntu
U-Boot vulnerabilities2026-02-23
Microsoft
An integer overflow in ext4fs_read_symlink in Das U-Boot before 2025.01-rc1 occurs for zalloc (adding one to an le32 variable) via a crafted ext4 filesystem with an inode size of 0xffffffff, resulting2025-02-11
Debian
CVE-2024-57256: u-boot - An integer overflow in ext4fs_read_symlink in Das U-Boot before 2025.01-rc1 occu...2024
CVE-2024-57256 — Integer Overflow or Wraparound | cvebase