Primary

Context

Das U-Boot Integer Overflow Vulnerability in SquashFS Symlink Resolution

Vulnerability

Patched

A vulnerability exists in Das U-Boot bootloader versions prior to 2025.01-rc1, due to an integer overflow in the 'sqfs_resolve_symlink' function. This vulnerability can be triggered by a crafted SquashFS filesystem that includes an inode size of 0xffffffff. The resulting memory corruption occurs because the overflow leads to a memory allocation of zero, which is then overwritten, creating potential for exploitation.

Impact

Exploitation of this vulnerability causes memory corruption, which can be leveraged to bypass verified boot processes, disrupt the chain of trust, and execute arbitrary code.

Remediation

Users are advised to upgrade to U-Boot version 2025.01-rc1 or later.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

7.5

exploitability

4.0

remediation

7.7

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

7.5

exploitability

4.0

remediation

7.7

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Das U-Boot Integer Overflow Vulnerability in SquashFS Symlink Resolution

Vulnerability

Impact

Remediation

Affected Products

Das U-Boot

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating