Количество 13
Количество 13
GHSA-xxc4-h4cm-j5r2
A flaw was found in grub2. When reading tar files, grub2 allocates an internal buffer for the file name. However, it fails to properly verify the allocation against possible integer overflows. It's possible to cause the allocation length to overflow with a crafted tar file, leading to a heap out-of-bounds write. This flaw eventually allows an attacker to circumvent secure boot protections.
CVE-2024-45780
A flaw was found in grub2. When reading tar files, grub2 allocates an internal buffer for the file name. However, it fails to properly verify the allocation against possible integer overflows. It's possible to cause the allocation length to overflow with a crafted tar file, leading to a heap out-of-bounds write. This flaw eventually allows an attacker to circumvent secure boot protections.
CVE-2024-45780
A flaw was found in grub2. When reading tar files, grub2 allocates an internal buffer for the file name. However, it fails to properly verify the allocation against possible integer overflows. It's possible to cause the allocation length to overflow with a crafted tar file, leading to a heap out-of-bounds write. This flaw eventually allows an attacker to circumvent secure boot protections.
CVE-2024-45780
A flaw was found in grub2. When reading tar files, grub2 allocates an internal buffer for the file name. However, it fails to properly verify the allocation against possible integer overflows. It's possible to cause the allocation length to overflow with a crafted tar file, leading to a heap out-of-bounds write. This flaw eventually allows an attacker to circumvent secure boot protections.
CVE-2024-45780
Grub2: fs/tar: integer overflow causes heap oob write
CVE-2024-45780
A flaw was found in grub2. When reading tar files, grub2 allocates an ...
BDU:2025-03837
Уязвимость компонента tar Handler загрузчика операционных систем Grub2, позволяющая нарушителю обойти механизм безопасной загрузки
SUSE-SU-2025:0629-1
Security update for grub2
SUSE-SU-2025:0607-1
Security update for grub2
SUSE-SU-2025:0588-1
Security update for grub2
SUSE-SU-2025:0587-1
Security update for grub2
SUSE-SU-2025:0586-1
Security update for grub2
ROS-20250818-06
Множественные уязвимости grub2-common
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-xxc4-h4cm-j5r2 A flaw was found in grub2. When reading tar files, grub2 allocates an internal buffer for the file name. However, it fails to properly verify the allocation against possible integer overflows. It's possible to cause the allocation length to overflow with a crafted tar file, leading to a heap out-of-bounds write. This flaw eventually allows an attacker to circumvent secure boot protections. | CVSS3: 6.7 | 0% Низкий | около 1 года назад |
 | CVE-2024-45780 A flaw was found in grub2. When reading tar files, grub2 allocates an internal buffer for the file name. However, it fails to properly verify the allocation against possible integer overflows. It's possible to cause the allocation length to overflow with a crafted tar file, leading to a heap out-of-bounds write. This flaw eventually allows an attacker to circumvent secure boot protections. | CVSS3: 6.7 | 0% Низкий | около 1 года назад |
 | CVE-2024-45780 A flaw was found in grub2. When reading tar files, grub2 allocates an internal buffer for the file name. However, it fails to properly verify the allocation against possible integer overflows. It's possible to cause the allocation length to overflow with a crafted tar file, leading to a heap out-of-bounds write. This flaw eventually allows an attacker to circumvent secure boot protections. | CVSS3: 6.7 | 0% Низкий | около 1 года назад |
 | CVE-2024-45780 A flaw was found in grub2. When reading tar files, grub2 allocates an internal buffer for the file name. However, it fails to properly verify the allocation against possible integer overflows. It's possible to cause the allocation length to overflow with a crafted tar file, leading to a heap out-of-bounds write. This flaw eventually allows an attacker to circumvent secure boot protections. | CVSS3: 6.7 | 0% Низкий | около 1 года назад |
 | CVE-2024-45780 Grub2: fs/tar: integer overflow causes heap oob write | CVSS3: 6.7 | 0% Низкий | 7 месяцев назад |
| CVE-2024-45780 A flaw was found in grub2. When reading tar files, grub2 allocates an ... | CVSS3: 6.7 | 0% Низкий | около 1 года назад |
 | BDU:2025-03837 Уязвимость компонента tar Handler загрузчика операционных систем Grub2, позволяющая нарушителю обойти механизм безопасной загрузки | CVSS3: 6.7 | 0% Низкий | около 1 года назад |
 | SUSE-SU-2025:0629-1 Security update for grub2 | около 1 года назад | ||
| SUSE-SU-2025:0607-1 Security update for grub2 | около 1 года назад | ||
| SUSE-SU-2025:0588-1 Security update for grub2 | около 1 года назад | ||
| SUSE-SU-2025:0587-1 Security update for grub2 | около 1 года назад | ||
| SUSE-SU-2025:0586-1 Security update for grub2 | около 1 года назад | ||
 | ROS-20250818-06 Множественные уязвимости grub2-common | CVSS3: 8.8 | 7 месяцев назад |
Уязвимостей на страницу