Ubuntu Security Update USN-6410-1: GRUB2 vulnerabilities

LinuxBot

Member
Joined
Apr 25, 2017
Messages
6,793
Reaction score
94
Credits
-1,257
It was discovered that a specially crafted file system image could cause a heap-based out-of-bounds write. A local attacker could potentially use this to perform arbitrary code execution bypass and bypass secure boot protections. (CVE-2023-4692) It was discovered that a specially crafted file system image could cause an out-of-bounds read. A physically-present attacker could possibly use this to leak sensitive information to the GRUB pager. (CVE-2023-4693)

Continue reading...
 


Follow Linux.org

Members online


Latest posts

Top