GNU GRUB2 Buffer Overflow Vulnerability (CNVD-2025-09673)

GNU GRUB2 is a Linux system bootloader from the GNU community. GNU GRUB2 suffers from a buffer overflow vulnerability that stems from the jfs file system module not properly checking for integer overflow issues, which can be exploited by an attacker to cause a heap out-of-bounds write issue that...

GNU GRUB2 Buffer Overflow Vulnerability (CNVD-2025-09674)

GNU GRUB2 is a Linux system bootloader from the GNU community. GNU GRUB2 suffers from a buffer overflow vulnerability that stems from the reiserfs fs module not properly checking for integer overflow issues, which can be exploited by an attacker to cause a heap out-of-bounds write, corrupt critic...

GNU GRUB2 Buffer Overflow Vulnerability (CNVD-2025-08319)

GRUB2 is a multiple bootloader for the GNU Project. GNU GRUB2 suffers from a buffer overflow vulnerability that stems from a failure to properly account for the length of an environment variable when copying user-controlled environment variable data to an internal buffer, resulting in an...

GNU GRUB2 Buffer Overflow Vulnerability (CNVD-2025-08323)

GRUB2 is a multiple bootloader for the GNU Project. GNU GRUB2 suffers from a buffer overflow vulnerability that stems from an integer overflow flaw found in GRUB2's BFS file system driver. No detailed vulnerability details are provided at this time...

GNU GRUB2 Buffer Overflow Vulnerability (CNVD-2025-08321)

GRUB2 is a multiple bootloader for the GNU Project. A buffer overflow vulnerability exists in GNU GRUB2, which stems from the fact that when reading a tar file, GRUB2 allocates an internal buffer for the filename, and does not properly validate the allocation for a possible integer overflow. An...

GNU GRUB2 Out-of-Bounds Write Vulnerability (CNVD-2025-08320)

GRUB2 is a multiple bootloader for the GNU Project. GNU GRUB2 suffers from an out-of-bounds write vulnerability that stems from a flaw found in the HFS file system. No details of the vulnerability are provided at this time...

GNU GRUB2 Buffer Overflow Vulnerability (CNVD-2025-08322)

GRUB2 is a multiple bootloader for the GNU Project. GNU GRUB2 suffers from a buffer overflow vulnerability that stems from a buffer overflow problem contained in reading the BFS file system. An attacker could exploit this vulnerability to cause a denial of service...

GNU GRUB2 Buffer Overflow Vulnerability

GNU GRUB2 is an open source bootloader used to load the operating system kernel when the computer boots. GNU GRUB2 suffers from a buffer overflow vulnerability that originates from an integer overflow when reading data from the squash4 file system. An attacker can exploit this vulnerability to...

PT-2025-6835

Name of the Vulnerable Software and Affected Versions GNU grub2 affected versions not specified Description A issue has been identified in GNU grub2 related to an hfs out-of-bounds write. Recommendations At the moment, there is no information about a newer version that contains a fix for this iss...

GNU GRUB2 Post-Release Reuse Vulnerability

GNU GRUB2 is a Linux system bootloader from the American GNU community. GNU GRUB2 suffers from a post-release reuse vulnerability that originates from a confusion in the program's instructions responsible for freeing memory. An attacker could exploit this vulnerability to cause a program crash,...

PT-2025-6691

Name of the Vulnerable Software and Affected Versions GNU grub2 affected versions not specified Description The issue concerns an out-of-bounds write in the strcpy function within the hfs.c file of the GNU grub2 software, specifically affecting the hfs filesystem module. Recommendations At the...

Security Bulletin: Security vulnerabilities have been fixed in IBM Security Verify Governance, Identity Manager virtual appliance component

Summary IBM Security Verify Governance, Identity Manager virtual appliance component has addressed the following vulnerabilities Vulnerability Details CVEID:CVE-2022-0778 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a flaw in the BNmodsqrt function when parsing certificate...

Security Bulletin: Red Hat OpenShift on IBM Cloud is affected by a GNU GRUB2 security vulnerability (CVE-2020-10713)

Summary Red Hat OpenShift on IBM Cloud is affected by a security vulnerability in GNU GRUB2 that could allow a local authenticated attacker to execute arbitrary code on the system. CVE-2020-10713 Vulnerability Details CVEID: CVE-2020-10713 Description: GNU GRUB2 could allow a local authenticated...

Security Bulletin: IBM Cloud Kubernetes Service is affected by a GNU GRUB2 security vulnerability (CVE-2020-10713)

Summary IBM Cloud Kubernetes Service is affected by a security vulnerability in GNU GRUB2 that could allow a local authenticated attacker to execute arbitrary code on the system. CVE-2020-10713 Vulnerability Details CVEID: CVE-2020-10713 Description: GNU GRUB2 could allow a local authenticated...

GNU GRUB2 'grub2-set-bootflag' Utility Local Denial of Service Vulnerability

Description GNU GRUB2 is prone to a local denial-of-service vulnerability. A local attacker can exploit this issue to cause a denial-of-service condition. Technologies Affected GNU GRUB2 Redhat Enterprise Linux 8 Recommendations Permit local access for trusted individuals only. Where possible, us...