Primary

Context

GRUB2 Heap-Based Buffer Overflow Vulnerability in UFS Filesystem Handling

Vulnerability

Patched

A heap out-of-bounds write vulnerability has been identified in GRUB2 when it reads symbolic link names from a UFS filesystem. The issue arises because GRUB2 does not properly validate the length of the input string, leading to potential data integrity problems. This vulnerability could allow an attacker to bypass secure boot protections.

Impact

Exploitation of this vulnerability causes a heap-based buffer overflow, which can lead to memory corruption and the potential for arbitrary code execution.

Remediation

Users can apply the GRUB2 security update available for Red Hat Enterprise Linux 9. Instructions for applying this update can be found in the Red Hat Enterprise Linux 9 Release Notes.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

GRUB2 Heap-Based Buffer Overflow Vulnerability in UFS Filesystem Handling

Vulnerability

Impact

Remediation

Affected Products

Red Hat grub2

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating