rpm package

opensuse/grub2&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/grub2&distro=openSUSE%20Tumbleweed

Vulnerabilities (56)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2025-61664	Med	4.9	< 2.12-67.1	2.12-67.1	Nov 18, 2025	A vulnerability in the GRUB2 bootloader has been identified in the normal module. This flaw, a memory Use After Free issue, occurs because the normal_exit command is not properly unregistered when its related module is unloaded. An attacker can exploit this condition by invoking
CVE-2025-61663	Med	4.9	< 2.12-67.1	2.12-67.1	Nov 18, 2025	A vulnerability has been identified in the GRUB2 bootloader's normal command that poses an immediate Denial of Service (DoS) risk. This flaw is a Use-after-Free issue, caused because the normal command is not properly unregistered when the module is unloaded. An attacker who can
CVE-2025-61662	Hig	7.8	< 2.12-67.1	2.12-67.1	Nov 18, 2025	A Use-After-Free vulnerability has been discovered in GRUB's gettext module. This flaw stems from a programming error where the gettext command remains registered in memory after its module is unloaded. An attacker can exploit this condition by invoking the orphaned command, caus
CVE-2025-61661	Med	4.8	< 2.12-67.1	2.12-67.1	Nov 18, 2025	A vulnerability has been identified in the GRUB (Grand Unified Bootloader) component. This flaw occurs because the bootloader mishandles string conversion when reading information from a USB device, allowing an attacker to exploit inconsistent length values. A local attacker can
CVE-2025-54771	Med	4.9	< 2.12-67.1	2.12-67.1	Nov 18, 2025	A use-after-free vulnerability has been identified in the GNU GRUB (Grand Unified Bootloader). The flaw occurs because the file-closing process incorrectly retains a memory pointer, leaving an invalid reference to a file system structure. An attacker could exploit this vulnerabil
CVE-2025-54770	Med	4.9	< 2.12-67.1	2.12-67.1	Nov 18, 2025	A vulnerability has been identified in the GRUB2 bootloader's network module that poses an immediate Denial of Service (DoS) risk. This flaw is a Use-after-Free issue, caused because the net_set_vlan command is not properly unregistered when the network module is unloaded from me
CVE-2025-4382	Med	5.9	< 2.12-50.1	2.12-50.1	May 9, 2025	A flaw was found in systems utilizing LUKS-encrypted disks with GRUB configured for TPM-based auto-decryption. When GRUB is set to automatically decrypt disks using keys stored in the TPM, it reads the decryption key into system memory. If an attacker with physical access can cor
CVE-2025-0686		—	< 2.12-35.1	2.12-35.1	Mar 3, 2025	A flaw was found in grub2. When performing a symlink lookup from a romfs filesystem, grub's romfs filesystem module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size, however, it improperly checks for integer overflows. A malicious
CVE-2025-0685		—	< 2.12-35.1	2.12-35.1	Mar 3, 2025	A flaw was found in grub2. When reading data from a jfs filesystem, grub's jfs filesystem module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size, however, it improperly checks for integer overflows. A maliciouly crafted filesyste
CVE-2025-0684		—	< 2.12-35.1	2.12-35.1	Mar 3, 2025	A flaw was found in grub2. When performing a symlink lookup from a reiserfs filesystem, grub's reiserfs fs module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size, however, it improperly checks for integer overflows. A maliciouly
CVE-2025-0678		—	< 2.12-35.1	2.12-35.1	Mar 3, 2025	A flaw was found in grub2. When reading data from a squash4 filesystem, grub's squash4 fs module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size, however, it improperly checks for integer overflows. A maliciously crafted filesyst
CVE-2024-45782		—	< 2.12-35.1	2.12-35.1	Mar 3, 2025	A flaw was found in the HFS filesystem. When reading an HFS volume's name at grub_fs_mount(), the HFS filesystem driver performs a strcpy() using the user-provided volume name as input without properly validating the volume name's length. This issue may read to a heap-based out-o
CVE-2024-45778		—	< 2.12-35.1	2.12-35.1	Mar 3, 2025	A stack overflow flaw was found when reading a BFS file system. A crafted BFS filesystem may lead to an uncontrolled loop, causing grub2 to crash.
CVE-2024-45779		—	< 2.12-35.1	2.12-35.1	Mar 3, 2025	An integer overflow flaw was found in the BFS file system driver in grub2. When reading a file with an indirect extent map, grub2 fails to validate the number of extent entries to be read. A crafted or corrupted BFS filesystem may cause an integer overflow during the file reading
CVE-2024-45780		—	< 2.12-35.1	2.12-35.1	Mar 3, 2025	A flaw was found in grub2. When reading tar files, grub2 allocates an internal buffer for the file name. However, it fails to properly verify the allocation against possible integer overflows. It's possible to cause the allocation length to overflow with a crafted tar file, leadi
CVE-2025-0689		—	< 2.12-35.1	2.12-35.1	Mar 3, 2025	When reading data from disk, the grub's UDF filesystem module utilizes the user controlled data length metadata to allocate its internal buffers. In certain scenarios, while iterating through disk sectors, it assumes the read size from the disk is always smaller than the allocate
CVE-2025-1125		—	< 2.12-35.1	2.12-35.1	Mar 3, 2025	When reading data from a hfs filesystem, grub's hfs filesystem module uses user-controlled parameters from the filesystem metadata to calculate the internal buffers size, however it misses to properly check for integer overflows. A maliciouly crafted filesystem may lead some of t
CVE-2025-0690	Med	6.1	< 2.12-35.1	2.12-35.1	Feb 24, 2025	The read command is used to read the keyboard input from the user, while reads it keeps the input length in a 32-bit integer value which is further used to reallocate the line buffer to accept the next character. During this process, with a line big enough it's possible to make t
CVE-2025-0677	Med	6.4	< 2.12-35.1	2.12-35.1	Feb 19, 2025	A flaw was found in grub2. When performing a symlink lookup, the grub's UFS module checks the inode's data size to allocate the internal buffer to read the file content, however, it fails to check if the symlink data size has overflown. When this occurs, grub_malloc() may be call
CVE-2025-0624	Hig	7.6	< 2.12-35.1	2.12-35.1	Feb 19, 2025	A flaw was found in grub2. During the network boot process, when trying to search for the configuration file, grub copies data from a user controlled environment variable into an internal buffer using the grub_strcpy() function. During this step, it fails to consider the environm

CVE-2025-61664MedNov 18, 2025
affected < 2.12-67.1fixed 2.12-67.1
A vulnerability in the GRUB2 bootloader has been identified in the normal module. This flaw, a memory Use After Free issue, occurs because the normal_exit command is not properly unregistered when its related module is unloaded. An attacker can exploit this condition by invoking
CVE-2025-61663MedNov 18, 2025
affected < 2.12-67.1fixed 2.12-67.1
A vulnerability has been identified in the GRUB2 bootloader's normal command that poses an immediate Denial of Service (DoS) risk. This flaw is a Use-after-Free issue, caused because the normal command is not properly unregistered when the module is unloaded. An attacker who can
CVE-2025-61662HigNov 18, 2025
affected < 2.12-67.1fixed 2.12-67.1
A Use-After-Free vulnerability has been discovered in GRUB's gettext module. This flaw stems from a programming error where the gettext command remains registered in memory after its module is unloaded. An attacker can exploit this condition by invoking the orphaned command, caus
CVE-2025-61661MedNov 18, 2025
affected < 2.12-67.1fixed 2.12-67.1
A vulnerability has been identified in the GRUB (Grand Unified Bootloader) component. This flaw occurs because the bootloader mishandles string conversion when reading information from a USB device, allowing an attacker to exploit inconsistent length values. A local attacker can
CVE-2025-54771MedNov 18, 2025
affected < 2.12-67.1fixed 2.12-67.1
A use-after-free vulnerability has been identified in the GNU GRUB (Grand Unified Bootloader). The flaw occurs because the file-closing process incorrectly retains a memory pointer, leaving an invalid reference to a file system structure. An attacker could exploit this vulnerabil
CVE-2025-54770MedNov 18, 2025
affected < 2.12-67.1fixed 2.12-67.1
A vulnerability has been identified in the GRUB2 bootloader's network module that poses an immediate Denial of Service (DoS) risk. This flaw is a Use-after-Free issue, caused because the net_set_vlan command is not properly unregistered when the network module is unloaded from me
CVE-2025-4382MedMay 9, 2025
affected < 2.12-50.1fixed 2.12-50.1
A flaw was found in systems utilizing LUKS-encrypted disks with GRUB configured for TPM-based auto-decryption. When GRUB is set to automatically decrypt disks using keys stored in the TPM, it reads the decryption key into system memory. If an attacker with physical access can cor
CVE-2025-0686Mar 3, 2025
affected < 2.12-35.1fixed 2.12-35.1
A flaw was found in grub2. When performing a symlink lookup from a romfs filesystem, grub's romfs filesystem module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size, however, it improperly checks for integer overflows. A malicious
CVE-2025-0685Mar 3, 2025
affected < 2.12-35.1fixed 2.12-35.1
A flaw was found in grub2. When reading data from a jfs filesystem, grub's jfs filesystem module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size, however, it improperly checks for integer overflows. A maliciouly crafted filesyste
CVE-2025-0684Mar 3, 2025
affected < 2.12-35.1fixed 2.12-35.1
A flaw was found in grub2. When performing a symlink lookup from a reiserfs filesystem, grub's reiserfs fs module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size, however, it improperly checks for integer overflows. A maliciouly
CVE-2025-0678Mar 3, 2025
affected < 2.12-35.1fixed 2.12-35.1
A flaw was found in grub2. When reading data from a squash4 filesystem, grub's squash4 fs module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size, however, it improperly checks for integer overflows. A maliciously crafted filesyst
CVE-2024-45782Mar 3, 2025
affected < 2.12-35.1fixed 2.12-35.1
A flaw was found in the HFS filesystem. When reading an HFS volume's name at grub_fs_mount(), the HFS filesystem driver performs a strcpy() using the user-provided volume name as input without properly validating the volume name's length. This issue may read to a heap-based out-o
CVE-2024-45778Mar 3, 2025
affected < 2.12-35.1fixed 2.12-35.1
A stack overflow flaw was found when reading a BFS file system. A crafted BFS filesystem may lead to an uncontrolled loop, causing grub2 to crash.
CVE-2024-45779Mar 3, 2025
affected < 2.12-35.1fixed 2.12-35.1
An integer overflow flaw was found in the BFS file system driver in grub2. When reading a file with an indirect extent map, grub2 fails to validate the number of extent entries to be read. A crafted or corrupted BFS filesystem may cause an integer overflow during the file reading
CVE-2024-45780Mar 3, 2025
affected < 2.12-35.1fixed 2.12-35.1
A flaw was found in grub2. When reading tar files, grub2 allocates an internal buffer for the file name. However, it fails to properly verify the allocation against possible integer overflows. It's possible to cause the allocation length to overflow with a crafted tar file, leadi
CVE-2025-0689Mar 3, 2025
affected < 2.12-35.1fixed 2.12-35.1
When reading data from disk, the grub's UDF filesystem module utilizes the user controlled data length metadata to allocate its internal buffers. In certain scenarios, while iterating through disk sectors, it assumes the read size from the disk is always smaller than the allocate
CVE-2025-1125Mar 3, 2025
affected < 2.12-35.1fixed 2.12-35.1
When reading data from a hfs filesystem, grub's hfs filesystem module uses user-controlled parameters from the filesystem metadata to calculate the internal buffers size, however it misses to properly check for integer overflows. A maliciouly crafted filesystem may lead some of t
CVE-2025-0690MedFeb 24, 2025
affected < 2.12-35.1fixed 2.12-35.1
The read command is used to read the keyboard input from the user, while reads it keeps the input length in a 32-bit integer value which is further used to reallocate the line buffer to accept the next character. During this process, with a line big enough it's possible to make t
CVE-2025-0677MedFeb 19, 2025
affected < 2.12-35.1fixed 2.12-35.1
A flaw was found in grub2. When performing a symlink lookup, the grub's UFS module checks the inode's data size to allocate the internal buffer to read the file content, however, it fails to check if the symlink data size has overflown. When this occurs, grub_malloc() may be call
CVE-2025-0624HigFeb 19, 2025
affected < 2.12-35.1fixed 2.12-35.1
A flaw was found in grub2. During the network boot process, when trying to search for the configuration file, grub copies data from a user controlled environment variable into an internal buffer using the grub_strcpy() function. During this step, it fails to consider the environm

Page 1 of 3