Количество 27
Количество 27
CVE-2021-3695
A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. This issue has a high complexity to be exploited as an attacker needs to perform some triage over the heap layout to achieve signifcant results, also the values written into the memory are repeated three times in a row making difficult to produce valid payloads. This flaw affects grub2 versions prior grub-2.12.
CVE-2021-3695
A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. This issue has a high complexity to be exploited as an attacker needs to perform some triage over the heap layout to achieve signifcant results, also the values written into the memory are repeated three times in a row making difficult to produce valid payloads. This flaw affects grub2 versions prior grub-2.12.
CVE-2021-3695
A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. This issue has a high complexity to be exploited as an attacker needs to perform some triage over the heap layout to achieve signifcant results, also the values written into the memory are repeated three times in a row making difficult to produce valid payloads. This flaw affects grub2 versions prior grub-2.12.
CVE-2021-3695
CVE-2021-3695
A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write ...
GHSA-xjhh-w3rj-8mxm
A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. This issue has a high complexity to be exploited as an attacker needs to perform some triage over the heap layout to achieve signifcant results, also the values written into the memory are repeated three times in a row making difficult to produce valid payloads. This flaw affects grub2 versions prior grub-2.12.
BDU:2023-00286
Уязвимость конфигурационного файла Grub, связанная с записью за границами буфера, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании
SUSE-SU-2022:2041-1
Security update for grub2
SUSE-SU-2022:2039-1
Security update for grub2
SUSE-SU-2022:2038-1
Security update for grub2
SUSE-SU-2022:2037-1
Security update for grub2
SUSE-SU-2022:2036-1
Security update for grub2
SUSE-SU-2022:2074-1
Security update for grub2
SUSE-SU-2022:2064-1
Security update for grub2
SUSE-SU-2022:2035-1
Security update for grub2
ELSA-2023-12952
ELSA-2023-12952: grub2 security update (IMPORTANT)
ELSA-2022-9471
ELSA-2022-9471: grub2 security update (IMPORTANT)
ELSA-2022-9469
ELSA-2022-9469: grub2 security update (IMPORTANT)
RLSA-2022:5099
Important: grub2, mokutil, shim, and shim-unsigned-x64 security update
RLSA-2022:5095
Important: grub2, mokutil, shim, and shim-unsigned-x64 security update
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-3695 A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. This issue has a high complexity to be exploited as an attacker needs to perform some triage over the heap layout to achieve signifcant results, also the values written into the memory are repeated three times in a row making difficult to produce valid payloads. This flaw affects grub2 versions prior grub-2.12. | CVSS3: 4.5 | 0% Низкий | больше 3 лет назад |
 | CVE-2021-3695 A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. This issue has a high complexity to be exploited as an attacker needs to perform some triage over the heap layout to achieve signifcant results, also the values written into the memory are repeated three times in a row making difficult to produce valid payloads. This flaw affects grub2 versions prior grub-2.12. | CVSS3: 7.5 | 0% Низкий | больше 3 лет назад |
 | CVE-2021-3695 A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. This issue has a high complexity to be exploited as an attacker needs to perform some triage over the heap layout to achieve signifcant results, also the values written into the memory are repeated three times in a row making difficult to produce valid payloads. This flaw affects grub2 versions prior grub-2.12. | CVSS3: 4.5 | 0% Низкий | больше 3 лет назад |
 | CVSS3: 4.5 | 0% Низкий | около 2 лет назад | |
| CVE-2021-3695 A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write ... | CVSS3: 4.5 | 0% Низкий | больше 3 лет назад |
| GHSA-xjhh-w3rj-8mxm A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. This issue has a high complexity to be exploited as an attacker needs to perform some triage over the heap layout to achieve signifcant results, also the values written into the memory are repeated three times in a row making difficult to produce valid payloads. This flaw affects grub2 versions prior grub-2.12. | CVSS3: 4.5 | 0% Низкий | больше 3 лет назад |
 | BDU:2023-00286 Уязвимость конфигурационного файла Grub, связанная с записью за границами буфера, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании | CVSS3: 4.5 | 0% Низкий | больше 3 лет назад |
 | SUSE-SU-2022:2041-1 Security update for grub2 | больше 3 лет назад | ||
| SUSE-SU-2022:2039-1 Security update for grub2 | больше 3 лет назад | ||
| SUSE-SU-2022:2038-1 Security update for grub2 | больше 3 лет назад | ||
| SUSE-SU-2022:2037-1 Security update for grub2 | больше 3 лет назад | ||
| SUSE-SU-2022:2036-1 Security update for grub2 | больше 3 лет назад | ||
| SUSE-SU-2022:2074-1 Security update for grub2 | больше 3 лет назад | ||
| SUSE-SU-2022:2064-1 Security update for grub2 | больше 3 лет назад | ||
| SUSE-SU-2022:2035-1 Security update for grub2 | больше 3 лет назад | ||
| ELSA-2023-12952 ELSA-2023-12952: grub2 security update (IMPORTANT) | около 2 лет назад | ||
| ELSA-2022-9471 ELSA-2022-9471: grub2 security update (IMPORTANT) | больше 3 лет назад | ||
| ELSA-2022-9469 ELSA-2022-9469: grub2 security update (IMPORTANT) | больше 3 лет назад | ||
 | RLSA-2022:5099 Important: grub2, mokutil, shim, and shim-unsigned-x64 security update | больше 3 лет назад | ||
| RLSA-2022:5095 Important: grub2, mokutil, shim, and shim-unsigned-x64 security update | больше 3 лет назад |
Уязвимостей на страницу