Количество 25
Количество 25
BDU:2023-00286
Уязвимость конфигурационного файла Grub, связанная с записью за границами буфера, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании
ROS-20240208-03
Множественные уязвимости grub2
CVE-2021-3695
A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. This issue has a high complexity to be exploited as an attacker needs to perform some triage over the heap layout to achieve signifcant results, also the values written into the memory are repeated three times in a row making difficult to produce valid payloads. This flaw affects grub2 versions prior grub-2.12.
CVE-2021-3695
A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. This issue has a high complexity to be exploited as an attacker needs to perform some triage over the heap layout to achieve signifcant results, also the values written into the memory are repeated three times in a row making difficult to produce valid payloads. This flaw affects grub2 versions prior grub-2.12.
CVE-2021-3695
A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. This issue has a high complexity to be exploited as an attacker needs to perform some triage over the heap layout to achieve signifcant results, also the values written into the memory are repeated three times in a row making difficult to produce valid payloads. This flaw affects grub2 versions prior grub-2.12.
CVE-2021-3695
CVE-2021-3695
A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write ...
GHSA-xjhh-w3rj-8mxm
A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. This issue has a high complexity to be exploited as an attacker needs to perform some triage over the heap layout to achieve signifcant results, also the values written into the memory are repeated three times in a row making difficult to produce valid payloads. This flaw affects grub2 versions prior grub-2.12.
SUSE-SU-2022:2041-1
Security update for grub2
SUSE-SU-2022:2039-1
Security update for grub2
SUSE-SU-2022:2038-1
Security update for grub2
SUSE-SU-2022:2037-1
Security update for grub2
SUSE-SU-2022:2036-1
Security update for grub2
SUSE-SU-2022:2074-1
Security update for grub2
SUSE-SU-2022:2064-1
Security update for grub2
SUSE-SU-2022:2035-1
Security update for grub2
ELSA-2023-12952
ELSA-2023-12952: grub2 security update (IMPORTANT)
ELSA-2022-9471
ELSA-2022-9471: grub2 security update (IMPORTANT)
ELSA-2022-9469
ELSA-2022-9469: grub2 security update (IMPORTANT)
RLSA-2022:5099
Important: grub2, mokutil, shim, and shim-unsigned-x64 security update
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2023-00286 Уязвимость конфигурационного файла Grub, связанная с записью за границами буфера, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании | CVSS3: 4.5 | 0% Низкий | почти 3 года назад |
 | ROS-20240208-03 Множественные уязвимости grub2 | CVSS3: 8.1 | больше 1 года назад | |
 | CVE-2021-3695 A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. This issue has a high complexity to be exploited as an attacker needs to perform some triage over the heap layout to achieve signifcant results, also the values written into the memory are repeated three times in a row making difficult to produce valid payloads. This flaw affects grub2 versions prior grub-2.12. | CVSS3: 4.5 | 0% Низкий | почти 3 года назад |
 | CVE-2021-3695 A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. This issue has a high complexity to be exploited as an attacker needs to perform some triage over the heap layout to achieve signifcant results, also the values written into the memory are repeated three times in a row making difficult to produce valid payloads. This flaw affects grub2 versions prior grub-2.12. | CVSS3: 7.5 | 0% Низкий | около 3 лет назад |
 | CVE-2021-3695 A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. This issue has a high complexity to be exploited as an attacker needs to perform some triage over the heap layout to achieve signifcant results, also the values written into the memory are repeated three times in a row making difficult to produce valid payloads. This flaw affects grub2 versions prior grub-2.12. | CVSS3: 4.5 | 0% Низкий | почти 3 года назад |
 | CVSS3: 4.5 | 0% Низкий | больше 1 года назад | |
| CVE-2021-3695 A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write ... | CVSS3: 4.5 | 0% Низкий | почти 3 года назад |
| GHSA-xjhh-w3rj-8mxm A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. This issue has a high complexity to be exploited as an attacker needs to perform some triage over the heap layout to achieve signifcant results, also the values written into the memory are repeated three times in a row making difficult to produce valid payloads. This flaw affects grub2 versions prior grub-2.12. | CVSS3: 4.5 | 0% Низкий | почти 3 года назад |
 | SUSE-SU-2022:2041-1 Security update for grub2 | около 3 лет назад | ||
| SUSE-SU-2022:2039-1 Security update for grub2 | около 3 лет назад | ||
| SUSE-SU-2022:2038-1 Security update for grub2 | около 3 лет назад | ||
| SUSE-SU-2022:2037-1 Security update for grub2 | около 3 лет назад | ||
| SUSE-SU-2022:2036-1 Security update for grub2 | около 3 лет назад | ||
| SUSE-SU-2022:2074-1 Security update for grub2 | около 3 лет назад | ||
| SUSE-SU-2022:2064-1 Security update for grub2 | около 3 лет назад | ||
| SUSE-SU-2022:2035-1 Security update for grub2 | около 3 лет назад | ||
| ELSA-2023-12952 ELSA-2023-12952: grub2 security update (IMPORTANT) | больше 1 года назад | ||
| ELSA-2022-9471 ELSA-2022-9471: grub2 security update (IMPORTANT) | около 3 лет назад | ||
| ELSA-2022-9469 ELSA-2022-9469: grub2 security update (IMPORTANT) | около 3 лет назад | ||
 | RLSA-2022:5099 Important: grub2, mokutil, shim, and shim-unsigned-x64 security update | около 3 лет назад |
Уязвимостей на страницу