Medium: grub2

Issue Overview: A vulnerability has been identified in the GRUB2 bootloader's network module that poses an immediate Denial of Service DoS risk. This flaw is a Use-after-Free issue, caused because the netsetvlan command is not properly unregistered when the network module is unloaded from memory...

OESA-2025-2738 grub2 security update

GNU GRUB is a Multiboot boot loader. It was derived from GRUB, the GRand Unified Bootloader, which was originally designed and implemented by Erich Stefan Boleyn. Security Fixes: A use-after-free vulnerability has been identified in the GNU GRUB Grand Unified Bootloader. The flaw occurs because t...

OESA-2025-2737 grub2 security update

GNU GRUB is a Multiboot boot loader. It was derived from GRUB, the GRand Unified Bootloader, which was originally designed and implemented by Erich Stefan Boleyn. Security Fixes: A vulnerability has been identified in the GRUB2 bootloader's network module that poses an immediate Denial of Service...

OESA-2025-2736 grub2 security update

GNU GRUB is a Multiboot boot loader. It was derived from GRUB, the GRand Unified Bootloader, which was originally designed and implemented by Erich Stefan Boleyn. Security Fixes: A vulnerability has been identified in the GRUB2 bootloader's network module that poses an immediate Denial of Service...

OESA-2025-2735 grub2 security update

GNU GRUB is a Multiboot boot loader. It was derived from GRUB, the GRand Unified Bootloader, which was originally designed and implemented by Erich Stefan Boleyn. Security Fixes: A vulnerability has been identified in the GRUB2 bootloader's network module that poses an immediate Denial of Service...

AZL-70580 CVE-2025-61661 affecting package grub2 for versions less than 2.06-26

A vulnerability has been identified in the GRUB Grand Unified Bootloader component. This flaw occurs because the bootloader mishandles string conversion when reading information from a USB device, allowing an attacker to exploit inconsistent length values. A local attacker can connect a malicious...

CVE-2025-61661

A vulnerability has been identified in the GRUB Grand Unified Bootloader component. This flaw occurs because the bootloader mishandles string conversion when reading information from a USB device, allowing an attacker to exploit inconsistent length values. A local attacker can connect a malicious...

EUVD-2006-4447

Malware in sbrugna...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986531)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986531 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: gadget: configfs: Prevent OOB read/write in usbstringcopy Userspace provided string 's' coul...

usb: gadget: configfs: Prevent OOB read/write in usb_string_copy()

...

CVE-2006-4459

Integer overflow in AnywhereUSB/5 1.80.00 allows local users to cause a denial of service crash via a 1 byte header size specified in the USB string descriptor...

CVE-2006-4459

Integer overflow in AnywhereUSB/5 1.80.00 allows local users to cause a denial of service crash via a 1 byte header size specified in the USB string descriptor...