33 matches found
MiracleLinux 8 : grub2-2.02-123.el8.ML.1 (AXSA:2022-3578:03)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3578:03 advisory. grub2: Incorrect permission in grub.cfg allow unprivileged user to read the file content CVE-2021-3981 Tenable has extracted the preceding description block...
NewStart CGSL MAIN 6.02 : grub2 Multiple Vulnerabilities (NS-SA-2024-0068)
The remote NewStart CGSL host, running version MAIN 6.02, has grub2 packages installed that are affected by multiple vulnerabilities: - A flaw in grub2 was found where its configuration file, known as grub.cfg, is being created with the wrong permission set allowing non privileged users to read i...
CBL Mariner 2.0 Security Update: grub2 (CVE-2021-3981)
The version of grub2 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-3981 advisory. - A flaw in grub2 was found where its configuration file, known as grub.cfg, is being created with the wrong...
CVE-2021-3981 affecting package grub2 for versions less than 2.06-14
CVE-2021-3981 affecting package grub2 for versions less than 2.06-14. A patched version of the package is available...
Amazon Linux 2023 : grub2-common, grub2-efi-aa64, grub2-efi-aa64-cdboot (ALAS2023-2023-020)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-020 advisory. A flaw was found in grub 2, where a crafted 16-bit grayscale PNG image may lead to an out-of-bounds write. This flaw allows an attacker to corrupt the data on the heap portion of the grub2's...
EulerOS 2.0 SP11 : grub2 (EulerOS-SA-2023-1036)
According to the versions of the grub2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw in grub2 was found where its configuration file, known as grub.cfg, is being created with the wrong permission set allowing non privileged...
EulerOS 2.0 SP11 : grub2 (EulerOS-SA-2023-1011)
According to the versions of the grub2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw in grub2 was found where its configuration file, known as grub.cfg, is being created with the wrong permission set allowing non privileged...
Huawei EulerOS: Security Advisory for grub2 (EulerOS-SA-2022-2381)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2021-3981 affecting package grub2 for versions less than 2.06-5
CVE-2021-3981 affecting package grub2 for versions less than 2.06-5. A patched version of the package is available...
Huawei EulerOS: Security Advisory for grub2 (EulerOS-SA-2022-2074)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP9 : grub2 (EulerOS-SA-2022-1997)
According to the versions of the grub2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw in grub2 was found where its configuration file, known as grub.cfg, is being created with the wrong permission set allowing non privileged...
Huawei EulerOS: Security Advisory for grub2 (EulerOS-SA-2022-1967)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP9 : grub2 (EulerOS-SA-2022-1967)
According to the versions of the grub2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw in grub2 was found where its configuration file, known as grub.cfg, is being created with the wrong permission set allowing non privileged...
Huawei EulerOS: Security Advisory for grub2 (EulerOS-SA-2022-1828)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP10 : grub2 (EulerOS-SA-2022-1819)
According to the versions of the grub2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw in grub2 was found where its configuration file, known as grub.cfg, is being created with the wrong permission set allowing non privileged...
EulerOS 2.0 SP10 : grub2 (EulerOS-SA-2022-1828)
According to the versions of the grub2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw in grub2 was found where its configuration file, known as grub.cfg, is being created with the wrong permission set allowing non privileged...
Rocky Linux 8 : grub2 (RLSA-2022:2110)
The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:2110 advisory. - A flaw in grub2 was found where its configuration file, known as grub.cfg, is being created with the wrong permission set allowing non privileged users to read...
Oracle Linux 8 : grub2 (ELSA-2022-2110)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-2110 advisory. - Add CVE-2020-15706, CVE-2020-15707 to the list Orabug: 31225072 - CVE-2021-3981 Incorrect read permission in grub.cfg Tenable has extracted the preceding...
grub2 security, bug fix, and enhancement update
2.02-123.0.1 - backport arm64: Fix EFI loader kernel image allocation Orabug: 33702462 - backport Arm: check for the PE magic for the compiled arch Orabug: 33702462 - Backport some better script logic for BTRFS support Orabug: 32448171 - Do not add shim and grub certificate deps for aarch64...
CVE-2021-3981 affecting package grub2 2.06~rc1-7
CVE-2021-3981 affecting package grub2 2.06rc1-7. A patched version of the package is available...