Untriaged
Permalink
CVE-2024-45780
6.7 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): LOCAL
- Attack complexity (AC): LOW
- Privileges required (PR): HIGH
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): HIGH
- Integrity impact (I): HIGH
- Availability impact (A): HIGH
Grub2: fs/tar: integer overflow causes heap oob write
A flaw was found in grub2. When reading tar files, grub2 allocates an internal buffer for the file name. However, it fails to properly verify the allocation against possible integer overflows. It's possible to cause the allocation length to overflow with a crafted tar file, leading to a heap out-of-bounds write. This flaw eventually allows an attacker to circumvent secure boot protections.
References
- https://access.redhat.com/security/cve/CVE-2024-45780 x_refsource_REDHAT vdb-entry
- RHBZ#2345856 issue-tracking x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2024-45780 x_refsource_REDHAT vdb-entry
- RHBZ#2345856 issue-tracking x_refsource_REDHAT
- https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html
- https://access.redhat.com/security/cve/CVE-2024-45780 x_refsource_REDHAT vdb-entry
- RHBZ#2345856 issue-tracking x_refsource_REDHAT
- https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html
- https://access.redhat.com/security/cve/CVE-2024-45780 x_refsource_REDHAT vdb-entry
- RHBZ#2345856 issue-tracking x_refsource_REDHAT
- https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html
- https://access.redhat.com/security/cve/CVE-2024-45780 x_refsource_REDHAT vdb-entry
- RHBZ#2345856 issue-tracking x_refsource_REDHAT
- https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html
- RHBZ#2345856 issue-tracking x_refsource_REDHAT
- https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html
- https://access.redhat.com/security/cve/CVE-2024-45780 x_refsource_REDHAT vdb-entry
- https://access.redhat.com/security/cve/CVE-2024-45780 x_refsource_REDHAT vdb-entry
- RHBZ#2345856 issue-tracking x_refsource_REDHAT
- https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html
- https://access.redhat.com/security/cve/CVE-2024-45780 x_refsource_REDHAT vdb-entry
- RHBZ#2345856 issue-tracking x_refsource_REDHAT
- https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html
Affected products
grub2
- =<2.12
rhcos
Matching in nixpkgs
pkgs.grub2_pvgrub_image
PvGrub2 image for booting PV Xen guests
pkgs.grub2_pvhgrub_image
PvGrub2 image for booting PVH Xen guests
Package maintainers
-
@hehongbo Hongbo
-
@CertainLach Yaroslav Bolyukin <iam@lach.pw>
-
@SigmaSquadron Fernando Rodrigues <alpha@sigmasquadron.net>