CNNVD-202601-4605 Information

CNNVD ID

CNNVD-202601-4605

Related CVE

CVE-2026-24795

• CNNVD Published: 2026-01-27

Description (Chinese)

CloverBootloader是CloverHackyColor开源的一个引导加载程序。 CloverBootloader 5162之前版本存在安全漏洞，该漏洞源于正则表达式组件regcomp.C存在越界写入，可能导致内存损坏。

Description (English)

CloverBootloader is a guide loader for CloverHackyColor open source. The previous version of CloverBootloader 5162 had a security loophole, which stemmed from the cross-border writing of regcomp.C, a regular expression component, which could cause memory damage.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

CloverHackyColor

Published

2026-01-27

Last Modified

2026-02-24

References

https://github.com/CloverHackyColor/CloverBootloader/pull/733 https://access.redhat.com/security/cve/cve-2026-24795

Patch

https://github.com/CloverHackyColor/CloverBootloader/releases