grub2 is vulnerable to denial of service. The vulnerability exists due to out-of-bounds write when handling split HTTP headers which allows an attacker to crash the application via malicious input.