58 matches found
Astra Linux - уязвимость в grub2
A flaw was discovered in the HFS filesystem. When reading the name of an HFS volume during the grubfsmount function, the HFS filesystem driver uses the user-provided volume name as input without properly verifying the length of that name. This issue may lead to a heap-based out-of-bounds write...
EUVD-2019-19880
TransMac 12.3 contains a buffer overflow vulnerability in the volume name field that allows local attackers to crash the application by supplying an excessively long string. Attackers can create a malicious file with 1000 repeated characters, paste the content into the volume name field during di...
CVE-2019-25566
TransMac 12.3 contains a buffer overflow vulnerability in the volume name field that allows local attackers to crash the application by supplying an excessively long string. Attackers can create a malicious file with 1000 repeated characters, paste the content into the volume name field during di...
CVE-2019-25566
TransMac 12.3 is affected by a local denial-of-service vulnerability: a buffer overflow in the volume name field can crash the app when a long string is used (e.g., 1000 repeated characters during disk image creation). The connected CVE records confirm the issue and its impact as described; there...
CVE-2019-25566 TransMac 12.3 Denial of Service via Volume Name Field
TransMac 12.3 contains a buffer overflow vulnerability in the volume name field that allows local attackers to crash the application by supplying an excessively long string. Attackers can create a malicious file with 1000 repeated characters, paste the content into the volume name field during di...
CVE-2019-25566
TransMac 12.3 contains a buffer overflow vulnerability in the volume name field that allows local attackers to crash the application by supplying an excessively long string. Attackers can create a malicious file with 1000 repeated characters, paste the content into the volume name field during di...
CVE-2019-25566 TransMac 12.3 Denial of Service via Volume Name Field
TransMac 12.3 contains a buffer overflow vulnerability in the volume name field that allows local attackers to crash the application by supplying an excessively long string. Attackers can create a malicious file with 1000 repeated characters, paste the content into the volume name field during di...
Acute Systems TransMac 缓冲区错误漏洞
Acute Systems TransMac is a tool software developed by Acute Systems that allows access and management of Mac disks and file systems on Windows systems. Version 12.3 of Acute Systems TransMac contains a buffer error vulnerability. This vulnerability stems from a buffer overflow in the volume name...
PT-2026-26911
TransMac 12.3 contains a buffer overflow vulnerability in the volume name field that allows local attackers to crash the application by supplying an excessively long string. Attackers can create a malicious file with 1000 repeated characters, paste the content into the volume name field during di...
CVE-2025-22831 Buffer Overflow in NTFS when parsing the VOLUME_NAME
APTIOV contains a vulnerability in BIOS where an attacker may cause an Out-of-bounds Write by local. Successful exploitation of this vulnerability may lead to data corruption and loss of availability...
CVE-2025-22831 Buffer Overflow in NTFS when parsing the VOLUME_NAME
APTIOV contains a vulnerability in BIOS where an attacker may cause an Out-of-bounds Write by local. Successful exploitation of this vulnerability may lead to data corruption and loss of availability...
CVE-2025-22831
CVE-2025-22831 affects AMI AptioV BIOS. The vulnerability is a local, in-BIOS Out-of-bounds Write that can be triggered by an attacker with local access, causing data corruption and loss of availability. Exploitation details are not provided in the supplied documents; no patch/version remediation...
Grub2: fs/hfs: strcpy() using the volume name (fs/hfs.c:382)
...
Linux Distros Unpatched Vulnerability : CVE-2024-42257
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ext4: use memtostrpad for svolumename As with the other strings in struct ext4superblock,...
OESA-2025-1292 grub2 security update
GNU GRUB is a Multiboot boot loader. It was derived from GRUB, the GRand Unified Bootloader, which was originally designed and implemented by Erich Stefan Boleyn. Security Fixes: A flaw was found in grub2 where the grubextcmddispatcher function calls grubarglistalloc to allocate memory for the...
AZL-57691 CVE-2024-45782 affecting package grub2 for versions less than 2.06-25
A flaw was found in the HFS filesystem. When reading an HFS volume's name at grubfsmount, the HFS filesystem driver performs a strcpy using the user-provided volume name as input without properly validating the volume name's length. This issue may read to a heap-based out-of-bounds writer,...
DEBIAN-CVE-2024-45782
A flaw was found in the HFS filesystem. When reading an HFS volume's name at grubfsmount, the HFS filesystem driver performs a strcpy using the user-provided volume name as input without properly validating the volume name's length. This issue may read to a heap-based out-of-bounds writer,...
AZL-57666 CVE-2024-45782 affecting package grub2 for versions less than 2.06-15
A flaw was found in the HFS filesystem. When reading an HFS volume's name at grubfsmount, the HFS filesystem driver performs a strcpy using the user-provided volume name as input without properly validating the volume name's length. This issue may read to a heap-based out-of-bounds writer,...
CVE-2024-45782
A flaw was found in the HFS filesystem. When reading an HFS volume's name at grubfsmount, the HFS filesystem driver performs a strcpy using the user-provided volume name as input without properly validating the volume name's length. This issue may read to a heap-based out-of-bounds writer,...
CVE-2024-45782
CVE-2024-45782 affects grub2, specifically the HFS filesystem path where grub_fs_mount() uses strcpy on a user-provided volume name, enabling a heap-based out-of-bounds write and potential secure-boot bypass. Affected packages include grub2 prior to the updated 2.06 releases; remediation is to up...