grub

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description GNU GRand Unified Bootloader (2)
Version 2:2.06rc1-1 [testing]
2:2.04-10 [core]

Open

Group Affected Fixed Severity Status Ticket
AVG-1629 2:2.04-10 2:2.06rc1-1 Medium Testing
Issue Group Severity Remote Type Description
CVE-2021-20233 AVG-1629 Medium No Arbitrary code execution
There's a flaw in GRUB2 menu rendering code setparam_prefix() in the menu rendering code. It performs a length calculation under the assumption that...
CVE-2021-20225 AVG-1629 Medium No Arbitrary code execution
The option parser in GRUB2 allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific...
CVE-2020-27779 AVG-1629 Medium No Access restriction bypass
The GRUB2's cutmem command does not honor Secure Boot locking. This allows an privileged attacker to remove address ranges from memory creating an...
CVE-2020-27749 AVG-1629 Medium No Arbitrary code execution
grub_parser_split_cmdline() expands variable names present in the supplied command line in to their corresponding variable contents and uses a 1kB stack...
CVE-2020-25647 AVG-1629 Medium No Arbitrary code execution
grub_usb_device_initialize() is called to handle USB device initialization. It reads out the descriptors it needs from the USB device and uses that data to...
CVE-2020-25632 AVG-1629 Medium No Arbitrary code execution
The rmmod implementation for grub2 is flawed, allowing an attacker to unload a module used as a dependency without checking if any other dependent module is...
CVE-2020-14372 AVG-1629 Medium No Arbitrary code execution
GRUB2 enables the use of the command acpi even when secure boot is signaled by the firmware. An attacker with local root privileges can drop a small SSDT in...

Resolved

Group Affected Fixed Severity Status Ticket
AVG-1630 2:2.04-10 Medium Not affected
Issue Group Severity Remote Type Description
CVE-2021-3418 AVG-1630 Medium No Insufficient validation
The GRUB2 upstream reintroduced CVE-2020-15705. This refers to a distro specific flaw which upstream introduced in Grub 2.05.  If certificates that signed...