Описание
A buffer overflow was found in grub_font_construct_glyph(). A malicious crafted pf2 font can lead to an overflow when calculating the max_glyph_size value, allocating a smaller than needed buffer for the glyph, this further leads to a buffer overflow and a heap based out-of-bounds write. An attacker may use this vulnerability to circumvent the secure boot mechanism.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needed |
| devel | not-affected | does not affect Secure Boot |
| esm-infra-legacy/trusty | not-affected | does not affect Secure Boot |
| esm-infra/bionic | not-affected | does not affect Secure Boot |
| esm-infra/focal | not-affected | does not affect Secure Boot |
| esm-infra/xenial | not-affected | does not affect Secure Boot |
| focal | not-affected | does not affect Secure Boot |
| impish | ignored | end of life |
| jammy | not-affected | does not affect Secure Boot |
| kinetic | not-affected | does not affect Secure Boot |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 1.187.3~18.04.1 |
| devel | not-affected | 1.193 |
| esm-infra-legacy/trusty | needed | |
| esm-infra/bionic | not-affected | 1.187.3~18.04.1 |
| esm-infra/focal | not-affected | 1.187.3~20.04.1 |
| esm-infra/xenial | needed | |
| focal | released | 1.187.3~20.04.1 |
| jammy | released | 1.187.3~22.04.1 |
| kinetic | ignored | end of life |
| lunar | not-affected | 1.192 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 2.06-2ubuntu14.1 |
| devel | not-affected | 2.06-2ubuntu17 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | not-affected | 2.06-2ubuntu14.1 |
| esm-infra/focal | not-affected | 2.06-2ubuntu14.1 |
| esm-infra/xenial | needed | |
| focal | released | 2.06-2ubuntu14.1 |
| jammy | released | 2.06-2ubuntu14.1 |
| kinetic | ignored | end of life |
| lunar | not-affected | 2.06-2ubuntu16 |
Показывать по
EPSS
8.6 High
CVSS3
Связанные уязвимости
A buffer overflow was found in grub_font_construct_glyph(). A malicious crafted pf2 font can lead to an overflow when calculating the max_glyph_size value, allocating a smaller than needed buffer for the glyph, this further leads to a buffer overflow and a heap based out-of-bounds write. An attacker may use this vulnerability to circumvent the secure boot mechanism.
A buffer overflow was found in grub_font_construct_glyph(). A malicious crafted pf2 font can lead to an overflow when calculating the max_glyph_size value, allocating a smaller than needed buffer for the glyph, this further leads to a buffer overflow and a heap based out-of-bounds write. An attacker may use this vulnerability to circumvent the secure boot mechanism.
Redhat: CVE-2022-2601 grub2 - Buffer overflow in grub_font_construct_glyph() can lead to out-of-bound write and possible secure boot bypass
A buffer overflow was found in grub_font_construct_glyph(). A maliciou ...
A buffer overflow was found in grub_font_construct_glyph(). A malicious crafted pf2 font can lead to an overflow when calculating the max_glyph_size value, allocating a smaller than needed buffer for the glyph, this further leads to a buffer overflow and a heap based out-of-bounds write. An attacker may use this vulnerability to circumvent the secure boot mechanism.
EPSS
8.6 High
CVSS3