mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-06-21 22:53:48 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
fb0a4eb7a8aa94deffd46c4611175dee4ffe2d07
poky/meta/recipes-bsp/u-boot/files
History
Hongxu Jia e3072d229a u-boot: fix CVE-2025-24857 
According to [1], Improper access control for volatile memory containing boot
code in Universal Boot Loader (U-Boot) before 2017.11 and Qualcomm chips IPQ4019,
IPQ5018, IPQ5322, IPQ6018, IPQ8064, IPQ8074, and IPQ9574 could allow an attacker
to execute arbitrary code.

Backport a patch [2] from upstream to fix CVE-2025-24857

[1] https://nvd.nist.gov/vuln/detail/CVE-2025-24857
[2] 87d85139a9

(From OE-Core rev: 6f69c878896b536f5f7b16c566d420e188c82c7f)

Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
Signed-off-by: Fabien Thomas <fabien.thomas@smile.fr>
Signed-off-by: Paul Barker <paul@pbarker.dev>
2026-05-12 21:31:33 +01:00
..
CVE-2024-42040.patch
u-boot: fix CVE-2024-42040
2025-11-03 07:17:02 -08:00
CVE-2024-57254.patch
u-boot: fix CVE-2024-57254
2025-02-28 06:45:14 -08:00
CVE-2024-57255.patch
u-boot: fix CVE-2024-57255
2025-02-28 06:45:14 -08:00
CVE-2024-57256.patch
u-boot: fix CVE-2024-57256
2025-02-28 06:45:14 -08:00
CVE-2024-57257.patch
u-boot: fix CVE-2024-57257
2025-02-28 06:45:14 -08:00
CVE-2024-57258-1.patch
u-boot: fix CVE-2024-57258
2025-02-28 06:45:14 -08:00
CVE-2024-57258-2.patch
u-boot: fix CVE-2024-57258
2025-02-28 06:45:14 -08:00
CVE-2024-57258-3.patch
u-boot: fix CVE-2024-57258
2025-02-28 06:45:14 -08:00
CVE-2024-57259.patch
u-boot: fix CVE-2024-57259
2025-02-28 06:45:14 -08:00
CVE-2025-24857.patch
u-boot: fix CVE-2025-24857
2026-05-12 21:31:33 +01:00