CVE-2024-57256 An integer overflow in ext4fs_read_symlink in Das U-Boot before 2025.01-rc1 occurs for zalloc (adding one to an le32 variable) via a crafted ext4 filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite.
ATT&CK techniques detected
T1485Data Destruction
53%
“cve - 2024 - 57256 an integer overflow in ext4fs _ read _ symlink in das u - boot before 2025. 01 - rc1 occurs for zalloc ( adding one to an le32 variable ) via a crafted ext4 filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrit…”
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
Summary
Information published.