Nixpkgs Security Tracker

Untriaged

Permalink CVE-2025-1118

4.4 MEDIUM

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): HIGH
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): NONE
Availability impact (A): NONE

created 6 months, 1 week ago

Grub2: commands/dump: the dump command is not in lockdown when secure boot is enabled

A flaw was found in grub2. Grub's dump command is not blocked when grub is in lockdown mode, which allows the user to read any memory information, and an attacker may leverage this in order to extract signatures, salts, and other sensitive information from the memory.

References

RHBZ#2346137 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-1118 x_refsource_REDHAT vdb-entry
https://access.redhat.com/security/cve/CVE-2025-1118 x_refsource_REDHAT vdb-entry
RHBZ#2346137 issue-tracking x_refsource_REDHAT
RHBZ#2346137 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-1118 x_refsource_REDHAT vdb-entry
https://access.redhat.com/security/cve/CVE-2025-1118 x_refsource_REDHAT vdb-entry
RHBZ#2346137 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-1118 x_refsource_REDHAT vdb-entry
RHBZ#2346137 issue-tracking x_refsource_REDHAT
RHBZ#2346137 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-1118 x_refsource_REDHAT vdb-entry
RHBZ#2346137 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-1118 x_refsource_REDHAT vdb-entry
https://access.redhat.com/security/cve/CVE-2025-1118 x_refsource_REDHAT vdb-entry
RHBZ#2346137 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-1118 x_refsource_REDHAT vdb-entry
RHBZ#2346137 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2025-1118 x_refsource_REDHAT vdb-entry
RHBZ#2346137 issue-tracking x_refsource_REDHAT
RHSA-2025:16154 x_refsource_REDHAT vendor-advisory
RHSA-2025:16154 x_refsource_REDHAT vendor-advisory
https://access.redhat.com/security/cve/CVE-2025-1118 x_refsource_REDHAT vdb-entry
RHBZ#2346137 issue-tracking x_refsource_REDHAT

Affected products

grub2

=<2.12
*

rhcos

Matching in nixpkgs

pkgs.grub2_pvgrub_image

PvGrub2 image for booting PV Xen guests

nixos-unstable -
- nixpkgs-unstable

pkgs.grub2_pvhgrub_image

PvGrub2 image for booting PVH Xen guests

nixos-unstable -
- nixpkgs-unstable

Package maintainers