CVE-2025-61664 affecting package grub2 for versions less than 2.06-26

CVE-2025-61664 affecting package grub2 for versions less than 2.06-26. A patched version of the package is available...

EUVD-2022-49961

Malicious code in bioql PyPI...

AZL-54712 CVE-2024-56737 affecting package grub2 for versions less than 2.06-25

GNU GRUB aka GRUB2 through 2.12 has a heap-based buffer overflow in fs/hfs.c via crafted sblock data in an HFS filesystem...

AZL-31686 CVE-2023-4692 affecting package grub2 for versions less than 2.06-13

An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue may allow an attacker to present a specially crafted NTFS filesystem image, leading to grub's heap metadata corruption. In some circumstances, the attack may also corrupt the UEFI firmware heap metadata. As a...

AZL-34792 CVE-2022-3775 affecting package grub2 for versions less than 2.06-14

When rendering certain unicode sequences, grub2's font code doesn't proper validate if the informed glyph's width and height is constrained within bitmap size. As consequence an attacker can craft an input which will lead to a out-of-bounds write into grub2's heap, leading to memory corruption an...