Lucene search
Ubuntu.comUB:CVE-2023-4693HistoryOct 03, 2023 - 12:00 a.m.
CVE-2023-4693
2023-10-0300:00:00
ubuntu.com
ubuntu.com
10
grub2
ntfs filesystem
out-of-bounds read
attacker
sensitive data
memory
efi variable
confidentiality
risk
secure boot
esm
i386 trusty
ga kernel
key revocation
cwe-125
unix
An out-of-bounds read flaw was found on grub2’s NTFS filesystem driver.
This issue may allow a physically present attacker to present a specially
crafted NTFS file system image to read arbitrary memory locations. A
successful attack allows sensitive data cached in memory or EFI variable
values to be leaked, presenting a high Confidentiality risk.
Notes
| Author | Note |
|---|---|
| eslerm | grub2-unsigned contains Secure Boot security fixes the grub2 package unlikely affects Ubuntu’s Secure Boot grub2 and grub2-unsigned should have same major version |
| eslerm | Ubuntu Secure Boot and ESM do not cover i386 trusty’s GA kernel cannot handle new versions of grub Note that key revocation is required to protect against evil housekeeper attacks (such as BlackLotus) |
| eslerm | CWE-125 |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | grub2-signed | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | grub2-signed | < 1.187.6~20.04.1 | UNKNOWN |
| ubuntu | 22.04 | noarch | grub2-signed | < 1.187.6 | UNKNOWN |
| ubuntu | 23.04 | noarch | grub2-signed | < 1.193.2 | UNKNOWN |
| ubuntu | 23.10 | noarch | grub2-signed | < 1.197 | UNKNOWN |
| ubuntu | 24.04 | noarch | grub2-signed | < 1.199 | UNKNOWN |
| ubuntu | 16.04 | noarch | grub2-signed | < any | UNKNOWN |
| ubuntu | 18.04 | noarch | grub2-unsigned | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | grub2-unsigned | < 2.06-2ubuntu14.4 | UNKNOWN |
| ubuntu | 22.04 | noarch | grub2-unsigned | < 2.06-2ubuntu14.4 | UNKNOWN |
References
dfir.ru/2023/10/03/cve-2023-4692-cve-2023-4693-vulnerabilities-in-the-grub-boot-manager/
launchpad.net/bugs/cve/CVE-2023-4693
lists.gnu.org/archive/html/grub-devel/2023-10/msg00028.html
nvd.nist.gov/vuln/detail/CVE-2023-4693
security-tracker.debian.org/tracker/CVE-2023-4693
ubuntu.com/security/notices/USN-6410-1
www.cve.org/CVERecord?id=CVE-2023-4693
Related
cvelist
cvelist
CVE-2023-4693 Grub2: out-of-bounds read at fs/ntfs.c
2023-10-25 10:27:29
cbl_mariner
cbl_mariner
CVE-2023-4693 affecting package grub2 for versions less than 2.06-18
2024-04-19 22:15:55
CVE-2023-4693 affecting package grub2 for versions less than 2.06-13
2024-03-05 17:52:42
debiancve
debiancve
CVE-2023-4693
2023-10-25 18:17:41
prion
prion
Design/Logic Flaw
2023-10-25 18:17:00
veracode
veracode
Out-of-bounds Read
2023-10-08 22:49:43
cve
cve
CVE-2023-4693
2023-10-25 18:17:41
nessus
nessus
EulerOS 2.0 SP9 : grub2 (EulerOS-SA-2023-3333)
2024-01-16 00:00:00
EulerOS 2.0 SP10 : grub2 (EulerOS-SA-2024-1060)
2024-01-16 00:00:00
EulerOS 2.0 SP10 : grub2 (EulerOS-SA-2024-1084)
2024-01-16 00:00:00
osv
osv
grub2-signed, grub2-unsigned vulnerabilities
2023-10-04 01:31:42
grub2 - security update
2023-10-06 00:00:00
grub2 - security update
2023-10-06 00:00:00
redhatcve
redhatcve
CVE-2023-4692
2023-10-03 18:24:36
CVE-2023-4693
2023-10-03 18:24:46
amazon
amazon
Important: grub2
2023-10-12 15:08:00
fedora
fedora
[SECURITY] Fedora 39 Update: grub2-2.06-120.fc39
2024-04-29 01:55:42
[SECURITY] Fedora 38 Update: grub2-2.06-118.fc38
2024-05-03 01:36:58
[SECURITY] Fedora 40 Update: grub2-2.06-121.fc40
2024-04-23 01:15:56
openvas
openvas
Huawei EulerOS: Security Advisory for grub2 (EulerOS-SA-2024-1651)
2024-05-16 00:00:00
Debian: Security Advisory (DLA-3605-1)
2023-10-06 00:00:00
Huawei EulerOS: Security Advisory for grub2 (EulerOS-SA-2024-1035)
2024-01-05 00:00:00
ubuntu
ubuntu
GRUB2 vulnerabilities
2023-10-04 00:00:00
debian
debian
[SECURITY] [DSA 5519-1] grub2 security update
2023-10-06 19:03:15
[SECURITY] [DLA 3605-1] grub2 security update
2023-10-05 21:46:52
redhat
redhat
(RHSA-2024:2456) Moderate: grub2 security update
2024-04-30 06:15:45
(RHSA-2024:3184) Moderate: grub2 security update
2024-05-22 06:35:52
oraclelinux
oraclelinux
grub2 security update
2024-05-03 00:00:00
grub2 security update
2024-05-24 00:00:00
almalinux
almalinux
Moderate: grub2 security update
2024-04-30 00:00:00
mageia
mageia
Updated grub2 packages fix security vulnerabilities
2024-03-28 06:52:55
photon
photon
Important Photon OS Security Update - PHSA-2023-5.0-0130
2023-10-30 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0505
2023-11-04 00:00:00
Critical Photon OS Security Update - PHSA-2023-3.0-0681
2023-11-04 00:00:00
hp
hp
HP ThinPro 8.1 SP 2 Security Updates
2024-04-12 00:00:00