Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A stack consumption issue in sqfs_size in Das U-Boot before 2025.01-rc1 occurs via a crafted squashfs filesystem with deep symlink nesting.
CVSS Information
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
Vulnerability Type
未经控制的递归
Vulnerability Title
DENX Software Engineering Das U-Boot 安全漏洞
Vulnerability Description
DENX Software Engineering Das U-Boot是德国DENX Software Engineering公司的一个通用引导加载程序。 DENX Software Engineering Das U-Boot 2025.01-rc1之前版本存在安全漏洞,该漏洞源于squashfs深层符号链接嵌套导致的栈耗尽。
CVSS Information
N/A
Vulnerability Type
N/A