Hongxu Jia c72b542224 u-boot: fix CVE-2024-57259 ...

sqfs_search_dir in Das U-Boot before 2025.01-rc1 exhibits an off-by-one error
and resultant heap memory corruption for squashfs directory listing because the
path separator is not considered in a size calculation.

https://nvd.nist.gov/vuln/detail/CVE-2024-57259

(From OE-Core rev: 8fad176e6258a44d1ba1eed224cd27745b6a57cf)

Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>

2025-02-28 06:45:14 -08:00

..

acpid

acpid: Fix largefile enabled build

2022-12-21 10:16:31 +00:00

alsa-state

recipes: Drop remaining PR values from recipes

2023-09-22 07:45:17 +01:00

efibootmgr

efibootmgr: update compilation with musl

2022-12-17 23:49:56 +00:00

efivar

efivar: upgrade 38 -> 39

2024-03-01 09:28:51 +00:00

formfactor

recipes: Drop remaining PR values from recipes

2023-09-22 07:45:17 +01:00

gnu-efi

gnu-efi: Fix build on musl

2023-08-14 12:51:21 +01:00

grub

grub,grub-efi: Remove -mfpmath=sse on x86

2024-08-01 06:08:09 -07:00

keymaps

recipes: Drop remaining PR values from recipes

2023-09-22 07:45:17 +01:00

libacpi

libacpi: mark patches as inactive-upstream

2024-08-01 06:08:09 -07:00

lrzsz

lrzsz connman-gnome libfm: ignore various issues fatal with gcc-14

2024-06-20 06:29:43 -07:00

opensbi

opensbi: append LDFLAGS to TARGET_CC_ARCH

2024-02-02 11:06:17 +00:00

pciutils

pciutils: upgrade 3.10.0 -> 3.11.1

2024-03-01 09:28:51 +00:00

pm-utils

recipes: Drop remaining PR values from recipes

2023-09-22 07:45:17 +01:00

setserial

recipes: Drop remaining PR values from recipes

2023-09-22 07:45:17 +01:00

u-boot

u-boot: fix CVE-2024-57259

2025-02-28 06:45:14 -08:00

usbinit

recipes: Drop remaining PR values from recipes

2023-09-22 07:45:17 +01:00

usbutils

recipes-bsp: usbutils: Fix usb-devices command using busybox

2024-10-18 06:04:41 -07:00

v86d

recipes: Drop remaining PR values from recipes

2023-09-22 07:45:17 +01:00