Wind River Support Network

HomeDefectsLIN1021-13470

Fixed

LIN1021-13470 : Security Advisory - u-boot - CVE-2024-57258

Created: Feb 17, 2025 Updated: May 27, 2025

Resolved Date: May 21, 2025

Found In Version: 10.21.20.1

Fix Version: 10.21.20.25

Severity: Standard

Applicable for: Wind River Linux LTS 21

Component/s: Userspace

Description

Integer overflows in memory allocation in Das U-Boot before 2025.01-rc1 occur for a crafted squashfs filesystem via sbrk, via request2size, or because ptrdiff_t is mishandled on x86_64.

https://nvd.nist.gov/vuln/detail/CVE-2024-57258

CVEs

CVE-2024-57258