MiracleLinux 7 : grub2-2.02-0.29.0.1.el7.AXS7 (AXSA:2015-830:02)

🗓️ 16 Jan 2026 00:00:00Reported by TenableType

MiracleLinux 7 grub2 fix CVE-2015-5281 and issues with slash escaping, Hyper-V timing, and GPG boot errors.

Reporter	Title	Published	Views	Family All 26
Tenable Nessus	CentOS 7 : grub2 (CESA-2015:2401)	2 Dec 201500:00	–	nessus
Tenable Nessus	Fedora 22 : grub2-2.02-0.17.fc22 (2015-2c155d7632)	4 Mar 201600:00	–	nessus
Tenable Nessus	Fedora 23 : grub2-2.02-0.24.fc23 (2015-c3b4fef3af)	4 Mar 201600:00	–	nessus
Tenable Nessus	Oracle Linux 7 : grub2 (ELSA-2015-2401)	24 Nov 201500:00	–	nessus
Tenable Nessus	RHEL 7 : grub2 (RHSA-2015:2401)	20 Nov 201500:00	–	nessus
Tenable Nessus	Scientific Linux Security Update : grub2 on SL7.x x86_64 (20151119)	22 Dec 201500:00	–	nessus
Cent OS	grub2 security update	30 Nov 201519:33	–	centos
CNVD	Red Hat Enterprise Linux grub2 Package Code Execution Vulnerability	26 Nov 201500:00	–	cnvd
CVE	CVE-2015-5281	24 Nov 201520:00	–	cve
Cvelist	CVE-2015-5281	24 Nov 201520:00	–	cvelist

Source	Link
tsn	www.tsn.miraclelinux.com/en/node/6218
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The package checks in this plugin were extracted from
# Miracle Linux Security Advisory AXSA:2015-830:02.
##

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(289584);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2026/01/16");

  script_cve_id("CVE-2015-5281");

  script_name(english:"MiracleLinux 7 : grub2-2.02-0.29.0.1.el7.AXS7 (AXSA:2015-830:02)");

  script_set_attribute(attribute:"synopsis", value:
"The remote MiracleLinux host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the
AXSA:2015-830:02 advisory.

    The GRand Unified Bootloader (GRUB) is a highly configurable and customizable
    bootloader with modular architecture.  It support rich varietyof kernel formats,
    file systems, computer architectures and hardware devices.  This subpackage
    provides support for PC BIOS systems.
    Security issues fixed with this release:
    CVE-2015-5281
    ** RESERVED **
    This candidate has been reserved by an organization or individual that
    will use it when announcing a new security problem.  When the
    candidate has been publicized, the details for this candidate will be
    provided.
    Fixed bugs:
    * In one of the earlier updates, GRUB2 was modified to escape forward slash (/) characters in several
    different places. In one of these places, the escaping was unnecessary and prevented certain types of
    kernel command-line arguments from being passed to the kernel correctly. With this update, GRUB2 no longer
    escapes the forward slash characters in the mentioned place, and the kernel command-line arguments work as
    expected.
    * Previously, GRUB2 relied on a timing mechanism provided by legacy hardware, but not by the Hyper-V Gen2
    hypervisor, to calibrate its timer loop. This prevented GRUB2 from operating correctly on Hyper-V Gen2.
    This update modifies GRUB2 to use a different mechanism on Hyper-V Gen2 to calibrate the timing. As a
    result, Hyper-V Gen2 hypervisors now work as expected.
    * Prior to this update, users who manually configured GRUB2 to use the built-in GNU Privacy Guard (GPG)
    verification observed the following error on boot:
    alloc magic is broken at [addr]: [value] Aborted.
    * Previously, the system sometimes did not recover after terminating unexpectedly and failed to reboot. To
    fix this problem, the GRUB2 packages now enforce file synchronization when creating the GRUB2
    configuration file, which ensures that the required configuration files are written to disk. As a result,
    the system now reboots successfully after crashing.
    * Previously, if an unconfigured network driver instance was selected and configured when the GRUB2
    bootloader was loaded on a different instance, GRUB2 did not receive notifications of the Address
    Resolution Protocol (ARP) replies. Consequently, GRUB2 failed with the following error message:
    error: timeout: could not resolve hardware address.
    Enhancements:
    * Sorting of GRUB2 boot menu has been improved. GRUB2 now uses the rpmdevtools package to sort available
    kernels and the configuration file is being generated correctly with the most recent kernel version listed
    at the top.

Tenable has extracted the preceding description block directly from the MiracleLinux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://tsn.miraclelinux.com/en/node/6218");
  script_set_attribute(attribute:"solution", value:
"Update the affected grub2, grub2-efi and / or grub2-tools packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:H/Au:N/C:P/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2015-5281");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_set_attribute(attribute:"vendor_severity", value:"Low");

  script_set_attribute(attribute:"vuln_publication_date", value:"2015/11/19");
  script_set_attribute(attribute:"patch_publication_date", value:"2015/11/30");
  script_set_attribute(attribute:"plugin_publication_date", value:"2026/01/16");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:grub2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:grub2-efi");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:grub2-tools");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:miracle:linux:7");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Miracle Linux Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2026 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/MiracleLinux/release", "Host/MiracleLinux/rpm-list", "Host/cpu");

  exit(0);
}


include('rpm2.inc');

if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_product = get_kb_item('installed_os/local/SSH/0/product');
if (isnull(os_product) || 'MIRACLE LINUX' >!< os_product) audit(AUDIT_OS_NOT, 'MIRACLE LINUX');
var os_version = get_kb_item('installed_os/local/SSH/0/version');
if (isnull(os_version)) audit(AUDIT_UNKNOWN_APP_VER, 'MIRACLE LINUX');
if (! preg(pattern:"^7([^0-9]|$)", string:os_version)) audit(AUDIT_OS_NOT, 'MiracleLinux 7.x', 'MIRACLE LINUX ' + os_version);

if (!get_kb_item('Host/MiracleLinux/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('aarch64' >!< cpu && 'ppc' >!< cpu && 's390' >!< cpu && 'x86_64' >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'MIRACLE LINUX', cpu);

var constraints = [
  {
    'release': '7',
    'pkgs': [
      {'reference':'grub2-2.02-0.29.0.1.el7.AXS7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'grub2-efi-2.02-0.29.0.1.el7.AXS7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'grub2-tools-2.02-0.29.0.1.el7.AXS7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'}
    ]
  }
];

var os_release = get_one_kb_item('installed_os/local/SSH/0/release');
var os_sp = get_one_kb_item('Host/*/minor_release');

var flag = 0;
var reference;
var sp;
var _cpu;
var el_string;
var rpm_spec_vers_cmp;
var epoch;
var allowmaj;
var exists_check;
var cves;
foreach var constraint ( constraints ) {
  # Check that the target release is equal to the affected release
  if (!empty_or_null(constraint['release'])){
    if (constraint['release'] != os_release) continue;
  }
  if (!empty_or_null(constraint['sp'])){
    if (constraint['sp'] != os_sp) continue;
  }
  foreach var pkg ( constraint['pkgs'] ) {
    reference = NULL;
    sp = NULL;
    _cpu = NULL;
    el_string = NULL;
    rpm_spec_vers_cmp = NULL;
    epoch = NULL;
    allowmaj = NULL;
    exists_check = NULL;
    cves = NULL;
    if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];
    if (!empty_or_null(pkg['sp'])) sp = pkg['sp'];
    if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];
    if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];
    if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];
    if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];
    if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];
    if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];
    if (!empty_or_null(pkg['cves'])) cves = pkg['cves'];
    if (reference &&
        ## (no known rpm to check OR known rpm_exists)
        (!exists_check || rpm_exists(rpm:exists_check)) &&
        rpm_check(sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj, cves:cves)) flag++;
  }
}
if (flag)
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_NOTE,
      extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'grub2 / grub2-efi / grub2-tools');
}

16 Jan 2026 00:00Current

5.6Medium risk

Vulners AI Score5.6

CVSS 22.6

EPSS0.0006