9 matches found
Grub2: fs/bfs: integer overflow leads to heap oob read in the bfs parser
...
Medium: grub2
Issue Overview: When reading the language .mo file in grubmofileopen, grub2 fails to verify an integer overflow when allocating its internal buffer. A crafted .mo file may lead the buffer size calculation to overflow, leading to out-of-bound reads and writes. This flaw allows an attacker to leak...
CVE-2024-45778 Grub2: fs/bfs: integer overflow in the bfs parser.
A stack overflow flaw was found when reading a BFS file system. A crafted BFS filesystem may lead to an uncontrolled loop, causing grub2 to crash...
CVE-2024-45778
A stack overflow flaw was found when reading a BFS file system. A crafted BFS filesystem may lead to an uncontrolled loop, causing grub2 to crash...
CVE-2024-45779 Grub2: fs/bfs: integer overflow leads to heap oob read in the bfs parser
An integer overflow flaw was found in the BFS file system driver in grub2. When reading a file with an indirect extent map, grub2 fails to validate the number of extent entries to be read. A crafted or corrupted BFS filesystem may cause an integer overflow during the file reading, leading to a he...
CVE-2024-45779
An integer overflow flaw was found in the BFS file system driver in grub2. When reading a file with an indirect extent map, grub2 fails to validate the number of extent entries to be read. A crafted or corrupted BFS filesystem may cause an integer overflow during the file reading, leading to a he...
CVE-2024-45779 Grub2: fs/bfs: integer overflow leads to heap oob read in the bfs parser
An integer overflow flaw was found in the BFS file system driver in grub2. When reading a file with an indirect extent map, grub2 fails to validate the number of extent entries to be read. A crafted or corrupted BFS filesystem may cause an integer overflow during the file reading, leading to a he...
PT-2025-7421 · Fs/Bfs +3 · Fs/Bfs +3
Name of the Vulnerable Software and Affected Versions: fs/bfs affected versions not specified Description: The issue is related to an integer overflow in the BFS parser, which can lead to a Heap OOB Read and potentially Write in the fs/bfs component. Recommendations: At the moment, there is no...
PT-2025-7420 · Fs/Bfs +3 · Fs/Bfs +3
Name of the Vulnerable Software and Affected Versions: fs/bfs affected versions not specified Description: The issue is related to an integer overflow in the BFS parser. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability...