An out-of-bounds read flaw was found on grub2’s NTFS filesystem driver.
This issue may allow a physically present attacker to present a specially
crafted NTFS file system image to read arbitrary memory locations. A
successful attack allows sensitive data cached in memory or EFI variable
values to be leaked, presenting a high Confidentiality risk.
Author | Note |
---|---|
eslerm | grub2-unsigned contains Secure Boot security fixes the grub2 package unlikely affects Ubuntu’s Secure Boot grub2 and grub2-unsigned should have same major version |
eslerm | Ubuntu Secure Boot and ESM do not cover i386 trusty’s GA kernel cannot handle new versions of grub Note that key revocation is required to protect against evil housekeeper attacks (such as BlackLotus) |
eslerm | CWE-125 |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 18.04 | noarch | grub2-signed | < any | UNKNOWN |
ubuntu | 20.04 | noarch | grub2-signed | < 1.187.6~20.04.1 | UNKNOWN |
ubuntu | 22.04 | noarch | grub2-signed | < 1.187.6 | UNKNOWN |
ubuntu | 23.04 | noarch | grub2-signed | < 1.193.2 | UNKNOWN |
ubuntu | 23.10 | noarch | grub2-signed | < 1.197 | UNKNOWN |
ubuntu | 24.04 | noarch | grub2-signed | < 1.199 | UNKNOWN |
ubuntu | 16.04 | noarch | grub2-signed | < any | UNKNOWN |
ubuntu | 18.04 | noarch | grub2-unsigned | < any | UNKNOWN |
ubuntu | 20.04 | noarch | grub2-unsigned | < 2.06-2ubuntu14.4 | UNKNOWN |
ubuntu | 22.04 | noarch | grub2-unsigned | < 2.06-2ubuntu14.4 | UNKNOWN |
dfir.ru/2023/10/03/cve-2023-4692-cve-2023-4693-vulnerabilities-in-the-grub-boot-manager/
launchpad.net/bugs/cve/CVE-2023-4693
lists.gnu.org/archive/html/grub-devel/2023-10/msg00028.html
nvd.nist.gov/vuln/detail/CVE-2023-4693
security-tracker.debian.org/tracker/CVE-2023-4693
ubuntu.com/security/notices/USN-6410-1
www.cve.org/CVERecord?id=CVE-2023-4693