Описание
There's an issue with grub2 in all versions before 2.06 when handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size. The name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 2.02-2ubuntu8.16 |
| devel | not-affected | 2.06-2ubuntu18 |
| esm-infra-legacy/trusty | not-affected | 2.02~beta2-9ubuntu1.20 |
| esm-infra/bionic | not-affected | 2.02-2ubuntu8.16 |
| esm-infra/focal | not-affected | 2.04-1ubuntu26.1 |
| esm-infra/xenial | not-affected | 2.02~beta2-36ubuntu3.26 |
| focal | released | 2.04-1ubuntu26.1 |
| groovy | not-affected | 2.04-1ubuntu26.1 |
| hirsute | not-affected | 2.04-1ubuntu26.1 |
| jammy | not-affected | 2.06-2ubuntu7 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 1.93.18 |
| devel | not-affected | 1.193 |
| eoan | ignored | end of life |
| esm-infra-legacy/trusty | not-affected | 1.34.22 |
| esm-infra/bionic | not-affected | 1.93.18 |
| esm-infra/focal | not-affected | 1.142.3 |
| esm-infra/xenial | not-affected | 1.66.26 |
| focal | released | 1.142.3 |
| groovy | not-affected | 1.147 |
| hirsute | not-affected | 1.147 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 2.04-1ubuntu47.4 |
| devel | not-affected | 2.06-2ubuntu17 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | needs-triage | |
| esm-infra/focal | not-affected | 2.04-1ubuntu47.4 |
| esm-infra/xenial | needed | |
| focal | released | 2.04-1ubuntu47.4 |
| jammy | not-affected | 2.06-2ubuntu7 |
| kinetic | not-affected | 2.06-2ubuntu12 |
| lunar | not-affected | 2.06-2ubuntu16 |
Показывать по
Ссылки на источники
4.6 Medium
CVSS2
6.7 Medium
CVSS3
Связанные уязвимости
There's an issue with grub2 in all versions before 2.06 when handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size. The name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data.
There's an issue with grub2 in all versions before 2.06 when handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size. The name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data.
There's an issue with grub2 in all versions before 2.06 when handling ...
There's an issue with grub2 in all versions before 2.06 when handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size. The name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data.
4.6 Medium
CVSS2
6.7 Medium
CVSS3