3 matches found
CVE-2019-14865
Concrete details found: CVE-2019-14865 affects grub2, specifically the grub2-set-bootflag utility. Under resource pressure (RLIMIT), this can cause grubenv/grub2 configuration files to be truncated, leaving the system unbootable on subsequent reboots. Affected component: grub2-set-bootflag in gru...
CVE-2024-1048
CVE-2024-1048 - A grub2 flaw in the grub2-set-bootflag utility causes the program to write the new grubenv to a temporary file and rename it over the original grubenv. If the process is terminated before the atomic rename, the temporary file may not be removed, potentially accumulating files acro...
CVE-2023-4001
CVE-2023-4001 affects GRUB2 on certain downstream Red Hat patches where an attacker with physical access can bypass GRUB password protection by using a removable drive with a duplicate UUID to locate the config file containing the password hash. The issue was introduced in a downstream patch (not...